quagga 0.99.24.1-2ubuntu1.3 source package in Ubuntu
Changelog
quagga (0.99.24.1-2ubuntu1.3) xenial-security; urgency=medium
* SECURITY UPDATE: DoS via telnet CLI
- debian/patches/CVE-2017-5495-1.patch: limit size of vty buffer to
4096 bytes in lib/command.c, lib/vty.c, lib/vty.h, vtysh/vtysh.c.
- debian/patches/CVE-2017-5495-2.patch: ensure vty buf is nul
terminated and wrap puts to it with checks in lib/vty.c.
- CVE-2017-5495
* SECURITY UPDATE: DoS via BGP UPDATE messages
- debian/patches/CVE-2017-16227.patch: fix AS_PATH size calculation for
long paths in bgpd/bgp_aspath.c.
- CVE-2017-16227
-- Marc Deslauriers <email address hidden> Mon, 30 Oct 2017 10:25:44 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Xenial
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| quagga_0.99.24.1.orig.tar.gz | 2.6 MiB | 84ae1a47df085119a8fcab6c43ccea9efb9bc3112388b1dece5a9f0a0262754f |
| quagga_0.99.24.1-2ubuntu1.3.debian.tar.xz | 41.4 KiB | 63886529ed3f207a4860991a5c27862d73d5f7fd7292eb11d8a03376dc34a12a |
| quagga_0.99.24.1-2ubuntu1.3.dsc | 2.2 KiB | 25265463dedaf30161845176f05c870a80a891afd6c03e3d2f56e95de315842a |
Available diffs
Binary packages built by this source
- quagga: BGP/OSPF/RIP routing daemon
GNU Quagga is free software which manages TCP/IP based routing protocols.
It supports BGP4, BGP4+, OSPFv2, OSPFv3, IS-IS, RIPv1, RIPv2, and RIPng as
well as the IPv6 versions of these.
.
As the predecessor Zebra has been considered orphaned, the Quagga project
has been formed by members of the zebra mailing list and the former
zebra-pj project to continue developing.
.
Quagga uses threading if the kernel supports it, but can also run on
kernels that do not support threading. Each protocol has its own daemon.
.
It is more than a routed replacement, it can be used as a Route Server and
a Route Reflector.
- quagga-dbg: BGP/OSPF/RIP routing daemon (debug symbols)
This package provides debugging symbols for all binary packages built from
quagga source package. It's highly recommended to have this package installed
before reporting any Quagga crashes to either Quagga developers or Debian
package maintainers.
- quagga-dbgsym: debug symbols for package quagga
GNU Quagga is free software which manages TCP/IP based routing protocols.
It supports BGP4, BGP4+, OSPFv2, OSPFv3, IS-IS, RIPv1, RIPv2, and RIPng as
well as the IPv6 versions of these.
.
As the predecessor Zebra has been considered orphaned, the Quagga project
has been formed by members of the zebra mailing list and the former
zebra-pj project to continue developing.
.
Quagga uses threading if the kernel supports it, but can also run on
kernels that do not support threading. Each protocol has its own daemon.
.
It is more than a routed replacement, it can be used as a Route Server and
a Route Reflector.
- quagga-doc: documentation files for quagga
This package includes info files for quagga, a free software which manages
TCP/IP based routing protocols. It supports BGP4, BGP4+, OSPFv2, OSPFv3,
IS-IS, RIPv1, RIPv2, and RIPng as well as the IPv6 versions of these.
