AZL-44247

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-44247.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-44247

Upstream

CVE-2012-0250

Published

2012-04-05T13:25:30Z

Modified

2026-04-21T04:31:20.776839Z

Summary

CVE-2012-0250 affecting package quagga 1.2.4-16

Details

Buffer overflow in the OSPFv2 implementation in ospfd in Quagga before 0.99.20.1 allows remote attackers to cause a denial of service (daemon crash) via a Link State Update (aka LS Update) packet containing a network-LSA link-state advertisement for which the data-structure length is smaller than the value in the Length header field.

References

https://nvd.nist.gov/vuln/detail/CVE-2012-0250

Affected packages

Azure Linux:3 / quagga

Package

Name: quagga
Purl: pkg:rpm/azure-linux/quagga

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

1.2.4-16

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-44247.json"