A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are intended to be ignored. This issue may allow an attacker to send specially crafted hello messages with the unicast flag set, the interval field set to 0, or any TLV that contains a sub-TLV with the Mandatory flag set to enter an infinite loop and cause a denial of service.
Metrics
Affected Vendors & Products
References
History
Fri, 27 Sep 2024 14:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2023-07-24T15:19:20.511Z
Updated: 2024-09-27T13:44:27.663Z
Reserved: 2023-07-18T12:45:44.867Z
Link: CVE-2023-3748
Vulnrichment
Updated: 2024-08-02T07:01:57.510Z
NVD
Status : Modified
Published: 2023-07-24T16:15:13.203
Modified: 2024-11-21T08:17:58.450
Link: CVE-2023-3748
Redhat