AZL-69619

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-69619.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-69619

Upstream

CVE-2025-61099

Published

2025-10-27T19:16:04Z

Modified

2026-04-21T04:38:38.686018Z

Summary

CVE-2025-61099 affecting package frr for versions less than 8.5.5-5

Details

FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the opaqueinfodetail function at ospf_opaque.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted LS Update packet.

References

https://nvd.nist.gov/vuln/detail/CVE-2025-61099

Affected packages

Azure Linux:2 / frr

Package

Name: frr
Purl: pkg:rpm/azure-linux/frr

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.5.5-5

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-69619.json"