An issue was discovered in frr from 8.3 when parsing certain babeld unicast hello messages that were intended to be ignored. Hello messages with the unicast flag set, the interval field set to 0, or any TLV that contains a sub-TLV with the Mandatory flag set could enter an infinite loop.
We do not ship babeld with our FRR package in RHEL. I am closing this bug report since it does not affect our package in RHEL.
Sorry, accidentally closed a bug for Security response. Apologies. Opening the bug and closing the bug for FRR instead.
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):