In OpenBGPD before 8.1, incorrect handling of BGP update data (length of path attributes) set by a potentially distant remote actor may cause the system to incorrectly reset a session. This is fixed in OpenBSD 7.3 errata 006.
{ "versions": [ { "introduced": "0" }, { "fixed": "8.1" } ] }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-38283.json"