Description of problem: Versions of quagga which support 4 byte ASN's are prone to crash with an assert error when receiving a long AS path. This then causes disruption and instability in the routing tables and peerings. Version-Release number of selected component (if applicable): Versions prior to 0.99.12 are vulnerable. Fixed in version 0.99.12 along with several other lower priority fixes. How reproducible: Unpredictable. Depends on someone else on the Internet advertising a long ASN path with 4 byte ASN's. This last time it was netadmins in Cairo setting up for AfNOG10 that caused quagga bgpd instances all over the net to crash. Actual results: Assert error in bgp log file. Bgpd no longer running. Routing tables gone. Inbound route advertisements gone. Expected results: Bgpd should continue to operate and run normally. Additional info: This is fixed in 0.99.12 which also contains fixes for things like running bgpd in a dual stack IPv4 / IPv6 environment with MD5 sums amongst others. Reference updates notes on home page. Please pick up the entire package without cherry picking patches. I've build rpm's from the package using the Fedora source package and just updating the source version and source tarball. Quagga 0.98 may not be affected due to lack of support for 4 byte ASN's but was not tested to verify.
quagga-0.99.12-1.fc10 has been submitted as an update for Fedora 10. http://admin.fedoraproject.org/updates/quagga-0.99.12-1.fc10
quagga-0.99.12-1.fc11 has been submitted as an update for Fedora 11. http://admin.fedoraproject.org/updates/quagga-0.99.12-1.fc11
quagga-0.99.12-1.fc10 has been pushed to the Fedora 10 stable repository. If problems still persist, please make note of it in this bug report.
quagga-0.99.12-1.fc11 has been pushed to the Fedora 11 stable repository. If problems still persist, please make note of it in this bug report.