Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : quagga vulnerabilities (USN-1261-1)

Ubuntu Security Notice (C) 2011-2016 Canonical, Inc. / NASL script (C) 2011-2016 Tenable Network Security, Inc.


Synopsis :

The remote Ubuntu host is missing a security-related patch.

Description :

Riku Hietamaki, Tuomo Untinen and Jukka Taimisto discovered that
Quagga incorrectly handled Link State Update messages with invalid
lengths. A remote attacker could use this flaw to cause Quagga to
crash, resulting in a denial of service. (CVE-2011-3323)

Riku Hietamaki, Tuomo Untinen and Jukka Taimisto discovered that
Quagga incorrectly handled certain IPv6 Database Description messages.
A remote attacker could use this flaw to cause Quagga to crash,
resulting in a denial of service. (CVE-2011-3324)

Riku Hietamaki, Tuomo Untinen and Jukka Taimisto discovered that
Quagga incorrectly handled certain IPv4 packets. A remote attacker
could use this flaw to cause Quagga to crash, resulting in a denial of
service. (CVE-2011-3325)

Riku Hietamaki, Tuomo Untinen and Jukka Taimisto discovered that
Quagga incorrectly handled invalid Link State Advertisement (LSA)
types. A remote attacker could use this flaw to cause Quagga to crash,
resulting in a denial of service. (CVE-2011-3326)

Riku Hietamaki, Tuomo Untinen and Jukka Taimisto discovered that
Quagga incorrectly handled certain BGP UPDATE messages. A remote
attacker could use this flaw to cause Quagga to crash, or possibly
execute arbitrary code. (CVE-2011-3327).

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

Solution :

Update the affected quagga package.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 6.5
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : false

Family: Ubuntu Local Security Checks

Nessus Plugin ID: 56853 ()

Bugtraq ID: 49784

CVE ID: CVE-2011-3323
CVE-2011-3324
CVE-2011-3325
CVE-2011-3326
CVE-2011-3327