Oval Definition:oval:org.opensuse.security:def:20071995
Revision Date:2022-06-30Version:1
Title:CVE-2007-1995
Description:

bgpd/bgp_attr.c in Quagga 0.98.6 and earlier, and 0.99.6 and earlier 0.99 versions, does not validate length values in the MP_REACH_NLRI and MP_UNREACH_NLRI attributes, which allows remote attackers to cause a denial of service (daemon crash or exit) via crafted UPDATE messages that trigger an assertion error or out of bounds read.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2007-1995
Mitre CVE-2007-1995
SUSE CVE-2007-1995
SUSE-SR:2007:009
SUSE-SR:2007:009
Platform(s):openSUSE 10.2
openSUSE Tumbleweed
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Software Development Kit 11 SP4
Product(s):
Definition Synopsis
  • suse102 is installed
  • AND Package Information
  • quagga-devel less than 0.98.6-29
  • OR quagga less than 0.98.6-29
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND quagga-0.99.15-0.12.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND quagga-0.99.15-0.14.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND quagga-0.99.15-0.12 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND quagga-0.99.15-0.6.2 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND quagga-0.99.15-0.12.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND quagga-0.99.15-0.14.11 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND
  • quagga-0.99.15-0.14.11 is installed
  • OR quagga-devel-0.99.15-0.14.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND quagga-0.99.15-0.6.2 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND quagga-0.99.15-0.12.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND quagga-0.99.15-0.14.11 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND quagga-0.99.15-0.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND quagga-0.99.15-0.6 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND quagga-0.99.15-0.12 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND quagga-0.99.15-0.14 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND
  • quagga-0.99.15-0.14 is installed
  • OR quagga-devel-0.99.15-0.14 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND quagga-0.99.15-0.6.2 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND quagga-0.99.15-0.14.11 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND quagga-0.99.15-0.12.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND quagga-0.99.15-0.1.55 is installed
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • libfpm_pb0-1.2.4-2.14 is installed
  • OR libospf0-1.2.4-2.14 is installed
  • OR libospfapiclient0-1.2.4-2.14 is installed
  • OR libquagga_pb0-1.2.4-2.14 is installed
  • OR libzebra1-1.2.4-2.14 is installed
  • OR quagga-1.2.4-2.14 is installed
  • OR quagga-devel-1.2.4-2.14 is installed
    • BACK