CLSA-2023-1697817694

Import Source

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2023-1697817694

Upstream

Published

2023-10-20T16:01:38Z

Modified

2026-06-01T00:33:24.803997329Z

Summary

quagga: Fix of 2 CVEs

Details

CVE-2023-41360: don't read the first byte of ORF header if we are ahead of stream
CVE-2023-41358: do not process NLRIs if the attribute length is zero

References

Affected packages

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.99.15-14.0.2.el6.tuxcare.ol.els2

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2023-1697817694.json"

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.99.15-14.0.2.el6.tuxcare.ol.els2

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2023-1697817694.json"

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.99.15-14.0.2.el6.tuxcare.ol.els2

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2023-1697817694.json"