Oval Definition:	oval:org.mitre.oval:def:22296
Revision Date: 2014-02-24 Version: 35 Title: RHSA-2010:0785: quagga security update (Moderate) Description: Stack-based buffer overflow in the bgp_route_refresh_receive function in bgp_packet.c in bgpd in Quagga before 0.99.17 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a malformed Outbound Route Filtering (ORF) record in a BGP ROUTE-REFRESH (RR) message. Family: unix Class: patch Status: ACCEPTED Reference(s): CESA-2010:0785 CVE-2007-4826 CVE-2010-2948 RHSA-2010:0785-01 Platform(s): CentOS Linux 5 Red Hat Enterprise Linux 5 Product(s): quagga Definition Synopsis Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 OR The operating system installed on the system is CentOS Linux 5.x AND Packages section quagga-devel is earlier than 0:0.98.6-5.el5_5.2 OR quagga-contrib is earlier than 0:0.98.6-5.el5_5.2 OR quagga is earlier than 0:0.98.6-5.el5_5.2
BACK