CVE-2019-16159
published 2019-09-09CVE-2019-16159: BIRD Internet Routing Daemon 1.6.x through 1.6.7 and 2.x through 2.0.5 has a stack-based buffer overflow. The BGP daemon's support for RFC 8203 administrative…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
BIRD Internet Routing Daemon 1.6.x through 1.6.7 and 2.x through 2.0.5 has a stack-based buffer overflow. The BGP daemon's support for RFC 8203 administrative shutdown communication messages included an incorrect logical expression when checking the validity of an input message. Sending a shutdown communication with a sufficient message length causes a four-byte overflow to occur while processing the message, where two of the overflow bytes are attacker-controlled and two are fixed.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| bird_project | bird | >= 0 < 1.6.8-1 | 1.6.8-1 |
| bird_project | bird | >= 0 < 1.6.8-1 | 1.6.8-1 |
| debian | bird | < bird 1.6.8-1 (bookworm) | bird 1.6.8-1 (bookworm) |
| debian | bird2 | < bird 1.6.8-1 (bookworm) | bird 1.6.8-1 (bookworm) |
| debian | debian_linux | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| nic | bird | 1.6.0 – 1.6.7 | — |
| nic | bird | 2.0.0 – 2.0.5 | — |
| opensuse | backports_sle | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.5HIGH