AZL-69446

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-69446.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-69446

Upstream

CVE-2025-61107

Published

2025-10-28T15:16:13Z

Modified

2026-04-21T04:38:35.865425Z

Summary

CVE-2025-61107 affecting package frr for versions less than 8.5.5-5

Details

FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the showvtyextprefprefsid function at ospfext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted LSA Update packet.

References

https://nvd.nist.gov/vuln/detail/CVE-2025-61107

Affected packages

Azure Linux:2 / frr

Package

Name: frr
Purl: pkg:rpm/azure-linux/frr

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.5.5-5

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-69446.json"