CVE-2011-3325
published 2011-10-10CVE-2011-3325: ospf_packet.c in ospfd in Quagga before 0.99.19 allows remote attackers to cause a denial of service (daemon crash) via (1) a 0x0a type field in an IPv4 packet…
PriorityP424medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
4.63%
90.6th percentile
ospf_packet.c in ospfd in Quagga before 0.99.19 allows remote attackers to cause a denial of service (daemon crash) via (1) a 0x0a type field in an IPv4 packet header or (2) a truncated IPv4 Hello packet.
Affected
38 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| quagga | quagga | <= 0.99.18 | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
| quagga | quagga | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
vendor_redhat5.0MEDIUM
vendor_ubuntu5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Quagga vulnerabilities
vendor_ubuntu·2011-11-14·CVSS 5.0
CVE-2011-3325 [MEDIUM] Quagga vulnerabilities
Title: Quagga vulnerabilities
Summary: Quagga could be made to crash or run programs if it received specially
crafted network traffic.
Riku Hietamäki, Tuomo Untinen and Jukka Taimisto discovered that Quagga
incorrectly handled Link State Update messages with invalid lengths. A
remote attacker could use this flaw to cause Quagga to crash, resulting in
a denial of service. (CVE-2011-3323)
Riku Hietamäki, Tuomo Untinen and Jukka Taimisto discovered that Quagga
incorrectly handled certain IPv6 Database Description messages. A remote
attacker could use this flaw to cause Quagga to crash, resulting in a
denial of service. (CVE-2011-3324)
Riku Hietamäki, Tuomo Untinen and Jukka Taimisto discovered that Quagga
incorrectly handled certain IPv4 packets. A remote attacker could use this
flaw to c
Red Hat
(ospfd): Denial of service by decoding too short Hello packet or Hello packet with invalid OSPFv2 header type
vendor_redhat·2011-09-26·CVSS 5.0
CVE-2011-3325 [MEDIUM] (ospfd): Denial of service by decoding too short Hello packet or Hello packet with invalid OSPFv2 header type
(ospfd): Denial of service by decoding too short Hello packet or Hello packet with invalid OSPFv2 header type
ospf_packet.c in ospfd in Quagga before 0.99.19 allows remote attackers to cause a denial of service (daemon crash) via (1) a 0x0a type field in an IPv4 packet header or (2) a truncated IPv4 Hello packet.
Package: quagga (Red Hat Enterprise Linux 4) - Affected
GHSA
GHSA-68p8-wq54-pfrf: ospf_packet
ghsa_unreviewed·2022-05-14
CVE-2011-3325 [MEDIUM] GHSA-68p8-wq54-pfrf: ospf_packet
ospf_packet.c in ospfd in Quagga before 0.99.19 allows remote attackers to cause a denial of service (daemon crash) via (1) a 0x0a type field in an IPv4 packet header or (2) a truncated IPv4 Hello packet.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2011-3323 CVE-2011-3324 CVE-2011-3325 CVE-2011-3326 CVE-2011-3327 quagga various flaws [fedora-all]
bugzilla·2011-09-26·CVSS 5.0
CVE-2011-3323 [MEDIUM] CVE-2011-3323 CVE-2011-3324 CVE-2011-3325 CVE-2011-3326 CVE-2011-3327 quagga various flaws [fedora-all]
CVE-2011-3323 CVE-2011-3324 CVE-2011-3325 CVE-2011-3326 CVE-2011-3327 quagga various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include the bug IDs of the
respective parent bugs filed against the "Security Response" product.
Please mention CVE ids in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=738393
Please note
Bugzilla
CVE-2011-3325 Quagga (ospfd): Denial of service by decoding too short Hello packet or Hello packet with invalid OSPFv2 header type
bugzilla·2011-09-14·CVSS 5.0
CVE-2011-3325 [MEDIUM] CVE-2011-3325 Quagga (ospfd): Denial of service by decoding too short Hello packet or Hello packet with invalid OSPFv2 header type
CVE-2011-3325 Quagga (ospfd): Denial of service by decoding too short Hello packet or Hello packet with invalid OSPFv2 header type
A denial of service flaw was found in the way the ospfd daemon of the Quagga routing suire processes malformed Hello packets (not complete Hello packets of Hello packets with invalid OSPFv2 header type). A configured OSPF peer, could use this flaw to cause the master OSPF daemon (ospfd) to crash.
Discussion:
This issue affects the versions of the quagga package, as shipped with Red Hat
Enterprise Linux 4, 5, and 6.
--
This issue affects the versions of the quagga package, as shipped with Fedora
release of 14 and 15.
---
Created attachment 523210
Upstream CVE-2011-3325 patch #1 for Quagga-master branch
---
Created attachment 523212
Upstream CVE-2011-332
http://code.quagga.net/?p=quagga.git%3Ba=commit%3Bh=61ab0301606053192f45c188bc48afc837518770http://code.quagga.net/?p=quagga.git%3Ba=commit%3Bh=717750433839762d23a5f8d88fe0b4d57c8d490ahttp://lists.opensuse.org/opensuse-security-announce/2011-09/msg00027.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-10/msg00007.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-10/msg00010.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-12/msg00009.htmlhttp://rhn.redhat.com/errata/RHSA-2012-1258.htmlhttp://rhn.redhat.com/errata/RHSA-2012-1259.htmlhttp://secunia.com/advisories/46139http://secunia.com/advisories/46274http://secunia.com/advisories/48106http://security.gentoo.org/glsa/glsa-201202-02.xmlhttp://www.debian.org/security/2011/dsa-2316http://www.kb.cert.org/vuls/id/668534http://www.quagga.net/download/quagga-0.99.19.changelog.txthttps://bugzilla.redhat.com/show_bug.cgi?id=738396https://www.cert.fi/en/reports/2011/vulnerability539178.htmlhttp://code.quagga.net/?p=quagga.git%3Ba=commit%3Bh=61ab0301606053192f45c188bc48afc837518770http://code.quagga.net/?p=quagga.git%3Ba=commit%3Bh=717750433839762d23a5f8d88fe0b4d57c8d490ahttp://lists.opensuse.org/opensuse-security-announce/2011-09/msg00027.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-10/msg00007.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-10/msg00010.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-12/msg00009.htmlhttp://rhn.redhat.com/errata/RHSA-2012-1258.htmlhttp://rhn.redhat.com/errata/RHSA-2012-1259.htmlhttp://secunia.com/advisories/46139http://secunia.com/advisories/46274http://secunia.com/advisories/48106http://security.gentoo.org/glsa/glsa-201202-02.xmlhttp://www.debian.org/security/2011/dsa-2316http://www.kb.cert.org/vuls/id/668534http://www.quagga.net/download/quagga-0.99.19.changelog.txthttps://bugzilla.redhat.com/show_bug.cgi?id=738396https://www.cert.fi/en/reports/2011/vulnerability539178.html
2011-10-10
Published