CVE-2018-5378

CVE-2018-5378

The Quagga BGP daemon (bgpd) prior to version 1.2.3 does not properly bounds check the data sent with a NOTIFY to a peer, if an attribute length is invalid. Arbitrary data from the bgpd process may be sent over the network to a peer and/or bgpd may crash.

Source: CVE-2018-5378

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다