Wind River Support Network

HomeDefectsLIN1022-3856
Fixed

LIN1022-3856 : Security Advisory - frr - CVE-2022-36440

Created: Apr 5, 2023    Updated: Aug 3, 2023
Resolved Date: Jul 16, 2023
Found In Version: 10.22.33.1
Fix Version: 10.22.33.11
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Userspace

Description

A reachable assertion was found in Frrouting frr-bgpd 8.3.0 in the peek_for_as4_capability function. Attackers can maliciously construct BGP open packets and send them to BGP peers running frr-bgpd, resulting in DoS.

CREATE(Triage):(User=admin) CVE-2022-36440 (https://nvd.nist.gov/vuln/detail/CVE-2022-36440)

CVEs

  • Linkedin
  • Facebook
  • Twitter
  • Youtube