oss-sec mailing list archives

CVE request: Quagga OSPF-API stack overrun

From: David Lamparter <equinox () diac24 net>
Date: Wed, 3 Jul 2013 23:14:11 +0200

Hi,

I guess I need a CVE number for this, we've discovered a local network
exploitable stack overrun in Quagga's ospfd.

Reference:
http://lists.quagga.net/pipermail/quagga-dev/2013-July/010621.html

Cheers,

-David
(Quagga maintainer)

Current thread:

CVE request: Quagga OSPF-API stack overrun David Lamparter (Jul 03)
- Re: CVE request: Quagga OSPF-API stack overrun Kurt Seifried (Jul 03)