The Quagga BGP daemon, bgpd, can enter an infinite loop if sent an invalid OPEN message by a configured peer. This problem is triggerable by packets from a configured peer. When triggered, the bgpd daemon enters an infinite loop and cease to respond to any other events. BGP sessions will drop and not be reestablished. The CLI interface will be unresponsive. The bgpd daemon will stay in this state until it is restarted. Affects versions of quagga since 0.99.9 If "override-capability" neighbour option is set, all versions are affected.
Acknowledgments: Name: the Quagga project
Created attachment 1392683 [details] Upstream patch
External References: https://www.quagga.net/security/Quagga-2018-1975.txt
Created quagga tracking bugs for this issue: Affects: fedora-all [bug 1546004]