Bug 654603 (CVE-2010-1674)

Summary: CVE-2010-1674 quagga: DoS (crash) by processing malformed extended community attribute in a route
Product: [Other] Security Response Reporter: Jan Lieskovsky <jlieskov>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED ERRATA QA Contact:
Severity: low Docs Contact:
Priority: low    
Version: unspecifiedCC: aglotov, bressers, ohudlick, psklenar, security-response-team, vkrizan
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard: public=20110321,reported=20101117,source=vendor-sec,impact=low,cvss2=1.8/AV:A/AC:H/Au:N/C:N/I:N/A:P,rhel-4/quagga=wontfix,rhel-5/quagga=affected,rhel-6/quagga=affected,fedora-all/quagga=affected
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2015-07-29 10:49:57 EDT Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---
Bug Depends On: 684747, 684748, 684749, 684750, 684751, 689852, 845536, 845537    
Bug Blocks:    

Description Jan Lieskovsky 2010-11-18 06:29:27 EST
A NULL pointer dereference flaw was found in the way Quagga bgpd
daemon processed malformed route information. A configured BGP
peer could crash bgpd on a target system via a BGP message with
specially-crafted value of BGP Extended Communities attribute.
Comment 6 Jan Lieskovsky 2011-03-22 12:08:31 EDT
This issue affects the versions of the quagga package, as shipped
with Red Hat Enterprise Linux 4, 5, and 6.

--

This issue affects the versions of the quagga package, as shipped
with Fedora release of 13 and 14.
Comment 7 Jan Lieskovsky 2011-03-22 12:12:17 EDT
Updated upstream version, addressing this:

http://www.quagga.net/news2.php?y=2011&m=3&d=21#id1300723200
Comment 8 Jan Lieskovsky 2011-03-22 12:18:01 EDT
Created quagga tracking bugs for this issue

Affects: fedora-all [bug 689852]
Comment 9 Jan Lieskovsky 2011-03-22 12:21:37 EDT
Statement:

Vulnerable. This issue affects quagga packages in Red Hat Enterprise
Linux 4 and 5. The Red Hat Security Response Team has rated this issue
as having low security impact, a future update may address this flaw.
Comment 11 errata-xmlrpc 2011-03-31 11:06:17 EDT
This issue has been addressed in following products:

  Red Hat Enterprise Linux 6

Via RHSA-2011:0406 https://rhn.redhat.com/errata/RHSA-2011-0406.html
Comment 14 errata-xmlrpc 2012-09-12 16:06:07 EDT
This issue has been addressed in following products:

  Red Hat Enterprise Linux 5

Via RHSA-2012:1258 https://rhn.redhat.com/errata/RHSA-2012-1258.html