CVE-2018-5381 (https://nvd.nist.gov/vuln/detail/CVE-2018-5381): The Quagga BGP daemon, bgpd, had a bug in its parsing of "Capabilities" in BGP OPEN messages, in the bgp_packet.c:bgp_capability_msg_parse function. The parser can enter an infinite loop on invalid capabilities if a Multi-Protocol capability does not have a recognized AFI/SAFI. CVE-2018-5380 (https://nvd.nist.gov/vuln/detail/CVE-2018-5380): The Quagga BGP daemon, bgpd, can overrun internal BGP code-to-string conversion tables used for debug by 1 pointer value, based on input. CVE-2018-5379 (https://nvd.nist.gov/vuln/detail/CVE-2018-5379): The Quagga BGP daemon, bgpd, can double-free memory when processing certain forms of UPDATE message, containing cluster-list and/or unknown attributes. CVE-2018-5378 (https://nvd.nist.gov/vuln/detail/CVE-2018-5378): The Quagga BGP daemon, bgpd, does not properly bounds check the data sent with a NOTIFY to a peer, if an attribute length is invalid. Arbitrary data from the bgpd process may be sent over the network to a peer and/or it may crash.
Advisories ========== https://www.quagga.net/security/Quagga-2018-0543.txt https://www.quagga.net/security/Quagga-2018-1114.txt https://www.quagga.net/security/Quagga-2018-1550.txt https://www.quagga.net/security/Quagga-2018-1975.txt @ Maintainer(s): Please bump to >=net-misc/quagga-1.2.3.
commit 1f64762ca074542f9da3dc71e84b0d68c75dca06 Author: Sergey Popov <pinkbyte@gentoo.org> Date: Tue Feb 20 14:24:22 2018 +0300 net-misc/quagga: version bump Gentoo-Bug: 647788 Package-Manager: Portage-2.3.19, Repoman-2.3.6 Arches, please test and mark stable =net-misc/quagga-1.2.2 Target keywords: alpha amd64 arm hppa ppc sparc x86
Sorry, messed up with last message. Here we go again: Arches, please test and mark stable =net-misc/quagga-1.2.4 Target keywords: alpha amd64 arm hppa ppc sparc x86
x86 stable
amd64 stable
commit 301bc5994e8d45b27b11d6f9e86b15b43773b9af Author: Rolf Eike Beer <eike@sf-mail.de> Date: Fri Feb 23 08:57:23 2018 +0100 net-misc/quagga: stable 1.2.4 for sparc, bug #647788
hppa stable
Stable on alpha.
arm stable
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=5ad20b92a458e8c7d8dd5a48a9e23eec7b07faff commit 5ad20b92a458e8c7d8dd5a48a9e23eec7b07faff Author: Sergei Trofimovich <slyfox@gentoo.org> AuthorDate: 2018-04-20 06:56:32 +0000 Commit: Sergei Trofimovich <slyfox@gentoo.org> CommitDate: 2018-04-20 06:56:32 +0000 net-misc/quagga: stable 1.2.4 for ppc, bug #647788 Bug: https://bugs.gentoo.org/647788 Package-Manager: Portage-2.3.28, Repoman-2.3.9 RepoMan-Options: --include-arches="ppc" net-misc/quagga/quagga-1.2.4.ebuild | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)}
GLSA request filed.
This issue was resolved and addressed in GLSA 201804-17 at https://security.gentoo.org/glsa/201804-17 by GLSA coordinator Aaron Bauman (b-man).
