MGASA-2018-0133
- Source
- https://advisories.mageia.org/MGASA-2018-0133.html
- Import Source
- https://advisories.mageia.org/MGASA-2018-0133.json
- JSON Data
- https://api.osv.dev/v1/vulns/MGASA-2018-0133
- Related
- Published
- 2018-02-22T19:49:44Z
- Modified
- 2026-02-04T04:16:31.705166Z
- Summary
- Updated quagga packages fix security vulnerability
- Details
-
This is an update to fix several security issues. 1. CVE-2018-5379: Fix double free of unknown attribute 2. CVE-2018-5380: debug print of received NOTIFY data can over-read msg array 3. CVE-2018-5381: fix infinite loop on certain invalid OPEN messages
- References
-
- https://advisories.mageia.org/MGASA-2018-0133.html
- https://bugs.mageia.org/show_bug.cgi?id=22610
- https://www.debian.org/security/2018/dsa-4115
- https://nvd.nist.gov/vuln/detail/CVE-2018-5379
- https://nvd.nist.gov/vuln/detail/CVE-2018-5380
- https://nvd.nist.gov/vuln/detail/CVE-2018-5381
- https://www.quagga.net/security/Quagga-2018-1114.txt
- https://www.quagga.net/security/Quagga-2018-1550.txt
- https://www.quagga.net/security/Quagga-2018-1975.txt
- Credits
-
-
- Mageia - COORDINATOR
-
Affected packages
Mageia:6 / quagga
Package
- Name
- quagga
- Purl
- pkg:rpm/mageia/quagga?arch=source&distro=mageia-6