[Git][security-tracker-team/security-tracker][master] Add CVE-2023-41909/frr

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a90ebd11 by Salvatore Bonaccorso at 2023-09-06T21:57:09+02:00
Add CVE-2023-41909/frr

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -307,7 +307,10 @@ CVE-2023-41910 (An issue was discovered in lldpd before 1.0.17. By crafting a CD
 	- lldpd 1.0.17-1
 	NOTE: Fixed by: https://github.com/lldpd/lldpd/commit/a9aeabdf879c25c584852a0bb5523837632f099b (1.0.17)
 CVE-2023-41909 (An issue was discovered in FRRouting FRR through 9.0. bgp_nlri_parse_f ...)
-	TODO: check
+	- frr 8.4.4-1
+	NOTE: https://github.com/FRRouting/frr/commit/cfd04dcb3e689754a72507d086ba3b9709fc5ed8 (frr-9.0)
+	NOTE: https://github.com/FRRouting/frr/commit/cc1a551cb007cc8ed8b1ea0605a7ab46c16de12b (frr-8.5.1)
+	NOTE: https://github.com/FRRouting/frr/commit/0a12b878082f77b67ad5d9b4782846ac738575a2 (frr-8.4.4)
 CVE-2023-41908 (Cerebrate before 1.15 lacks the Secure attribute for the session cooki ...)
 	TODO: check
 CVE-2023-41058 (Parse Server is an open source backend server. In affected versions th ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a90ebd11048af535a4b0c976dad04f65fc72c9a8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a90ebd11048af535a4b0c976dad04f65fc72c9a8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230906/eb35ef17/attachment.htm>