CVE-2011-3323MEDIUM
Description
The OSPFv3 implementation in ospf6d in Quagga before 0.99.19 allows remote attackers to cause a denial of service (out-of-bounds memory access and daemon crash) via a Link State Update message with an invalid IPv6 prefix length.
References
http://code.quagga.net/?p=quagga.git;a=commit;h=abc7ef44ca05493500865ce81f7b84f5c4eb6594
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00027.html
http://lists.opensuse.org/opensuse-security-announce/2011-10/msg00007.html
http://lists.opensuse.org/opensuse-security-announce/2011-10/msg00010.html
http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00009.html
http://rhn.redhat.com/errata/RHSA-2012-1258.html
http://rhn.redhat.com/errata/RHSA-2012-1259.html
http://secunia.com/advisories/46139
http://secunia.com/advisories/46274
http://secunia.com/advisories/48106
http://security.gentoo.org/glsa/glsa-201202-02.xml
http://www.debian.org/security/2011/dsa-2316
http://www.kb.cert.org/vuls/id/668534
http://www.quagga.net/download/quagga-0.99.19.changelog.txt
https://www.cert.fi/en/reports/2011/vulnerability539178.html
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:quagga:quagga:0.95:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.96:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.96.1:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.96.2:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.96.3:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.96.4:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.96.5:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.97.0:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.97.1:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.97.2:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.97.3:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.97.4:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.97.5:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.98.0:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.98.1:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.98.2:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.98.3:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.98.4:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.98.5:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.98.6:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.99.1:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.99.2:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.99.3:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.99.4:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.99.5:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.99.6:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.99.7:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.99.8:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.99.9:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.99.10:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.99.11:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.99.12:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.99.13:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.99.14:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.99.15:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.99.16:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:0.99.17:*:*:*:*:*:*:*
cpe:2.3:a:quagga:quagga:*:*:*:*:*:*:*:* versions up to 0.99.18 (inclusive)
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 80751 | Oracle Solaris Third-Party Patch Update : quagga (multiple_denial_of_service_vulnerabilities4) | Nessus | Solaris Local Security Checks | medium |
| 76007 | openSUSE Security Update : quagga (openSUSE-SU-2011:1155-1) | Nessus | SuSE Local Security Checks | high |
| 75723 | openSUSE Security Update : quagga (openSUSE-SU-2011:1155-1) | Nessus | SuSE Local Security Checks | high |
| 68618 | Oracle Linux 6 : quagga (ELSA-2012-1259) | Nessus | Oracle Linux Local Security Checks | high |
| 68617 | Oracle Linux 5 : quagga (ELSA-2012-1258) | Nessus | Oracle Linux Local Security Checks | high |
| 62095 | Scientific Linux Security Update : quagga on SL6.x i386/x86_64 (20120912) | Nessus | Scientific Linux Local Security Checks | high |
| 62094 | Scientific Linux Security Update : quagga on SL5.x i386/x86_64 (20120912) | Nessus | Scientific Linux Local Security Checks | high |
| 62081 | CentOS 6 : quagga (CESA-2012:1259) | Nessus | CentOS Local Security Checks | high |
| 62070 | RHEL 6 : quagga (RHSA-2012:1259) | Nessus | Red Hat Local Security Checks | high |
| 62069 | RHEL 5 : quagga (RHSA-2012:1258) | Nessus | Red Hat Local Security Checks | high |
| 62066 | CentOS 5 : quagga (CESA-2012:1258) | Nessus | CentOS Local Security Checks | high |
| 59790 | Quagga < 0.99.19 Multiple Vulnerabilities | Nessus | Misc. | high |
| 58081 | GLSA-201202-02 : Quagga: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | high |
| 57250 | SuSE 10 Security Update : quagga (ZYPP Patch Number 7768) | Nessus | SuSE Local Security Checks | high |
| 57132 | SuSE 11.1 Security Update : quagga (SAT Patch Number 5169) | Nessus | SuSE Local Security Checks | high |
| 57131 | SuSE 11.1 Security Update : quagga (SAT Patch Number 5169) | Nessus | SuSE Local Security Checks | high |
| 56853 | Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : quagga vulnerabilities (USN-1261-1) | Nessus | Ubuntu Local Security Checks | high |
| 56615 | SuSE 10 Security Update : quagga (ZYPP Patch Number 7767) | Nessus | SuSE Local Security Checks | high |
| 56540 | Fedora 15 : quagga-0.99.20-2.fc15 (2011-13504) | Nessus | Fedora Local Security Checks | high |
| 56539 | Fedora 14 : quagga-0.99.20-2.fc14 (2011-13499) | Nessus | Fedora Local Security Checks | high |
| 56538 | Fedora 16 : quagga-0.99.20-2.fc16 (2011-13492) | Nessus | Fedora Local Security Checks | high |
| 56399 | FreeBSD : quagga -- multiple vulnerabilities (ab9be2c8-ef91-11e0-ad5a-00215c6a37bb) | Nessus | FreeBSD Local Security Checks | high |
| 56394 | Debian DSA-2316-1 : quagga - several vulnerabilities | Nessus | Debian Local Security Checks | high |