An issue was discovered in FRRouting FRR through 9.0. There is an out-of-bounds read in bgp_attr_aigp_valid in bgpd/bgp_attr.c because there is no check for the availability of two bytes during AIGP validation. https://github.com/FRRouting/frr/pull/14232
Created frr tracking bugs for this issue: Affects: fedora-all [bug 2236471]
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:2156 https://access.redhat.com/errata/RHSA-2024:2156