BGP UPDATE Packet Vulnerability in FRRouting Affects Cumulus Linux
CVE-2017-15865

7.5HIGH

Key Information:

Vendor

Frrouting

Status
Frrouting
Vendor
CVE Published:
8 November 2017

What is CVE-2017-15865?

A vulnerability in the bgpd component of FRRouting allows remote attackers to gain unauthorized access to sensitive information. This occurs when a malformed BGP UPDATE packet is sent from a connected peer, which causes the system to mishandle attribute lengths and inadvertently transmit a significant amount of unintended data. Affected versions include FRR before 2.0.2 and 3.x before 3.0.2, as well as Cumulus Linux before 3.4.3. This flaw underscores the importance of validating incoming BGP packets within network environments to prevent potential information leaks.

References

https://lists.cumulusnetworks.com/pipermail/cumulus-secur...
x_refsource_CONFIRM
https://support.cumulusnetworks.com/hc/en-us/articles/115...
x_refsource_CONFIRM
https://frrouting.org/community/security.html
x_refsource_CONFIRM

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.