Oval Definition:	oval:com.ubuntu.precise:def:20120255000
Revision Date: 2012-04-05 Version: 1 Title: CVE-2012-0255 on Ubuntu 12.04 LTS (precise) - medium. Description: The BGP implementation in bgpd in Quagga before 0.99.20.1 does not properly use message buffers for OPEN messages, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a message associated with a malformed Four-octet AS Number Capability (aka AS4 capability). Family: unix Class: vulnerability Status: Reference(s): CVE-2012-0255 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'quagga' package in precise was vulnerable but has been fixed (note: '0.99.20.1-0ubuntu0.12.04.2').
BACK