CVE-2010-2949
EUVD-2010-295310.09.2010, 19:00
bgpd in Quagga before 0.99.17 does not properly parse AS paths, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an unknown AS type in an AS path attribute in a BGP UPDATE message.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| quagga | quagga | 𝑥 ≤ 0.99.16 |
| quagga | quagga | 0.95 |
| quagga | quagga | 0.96 |
| quagga | quagga | 0.96.1 |
| quagga | quagga | 0.96.2 |
| quagga | quagga | 0.96.3 |
| quagga | quagga | 0.96.4 |
| quagga | quagga | 0.96.5 |
| quagga | quagga | 0.97.0 |
| quagga | quagga | 0.97.1 |
| quagga | quagga | 0.97.2 |
| quagga | quagga | 0.97.3 |
| quagga | quagga | 0.97.4 |
| quagga | quagga | 0.97.5 |
| quagga | quagga | 0.98.0 |
| quagga | quagga | 0.98.1 |
| quagga | quagga | 0.98.2 |
| quagga | quagga | 0.98.3 |
| quagga | quagga | 0.98.4 |
| quagga | quagga | 0.98.5 |
| quagga | quagga | 0.98.6 |
| quagga | quagga | 0.99.1 |
| quagga | quagga | 0.99.2 |
| quagga | quagga | 0.99.3 |
| quagga | quagga | 0.99.4 |
| quagga | quagga | 0.99.5 |
| quagga | quagga | 0.99.6 |
| quagga | quagga | 0.99.7 |
| quagga | quagga | 0.99.8 |
| quagga | quagga | 0.99.9 |
| quagga | quagga | 0.99.10 |
| quagga | quagga | 0.99.11 |
| quagga | quagga | 0.99.12 |
| quagga | quagga | 0.99.13 |
| quagga | quagga | 0.99.14 |
| quagga | quagga | 0.99.15 |
𝑥
= Vulnerable software versions
Ubuntu Releases
References