CVE-2025-61103

EUVD-2025-36528
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_lan_adj_sid function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 47%
Affected Products (NVD)
VendorProductVersion
frroutingfrrouting
4.0 ≤
𝑥
≤ 10.4.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
frr
bookworm
postponed
bookworm (security)
vulnerable
bullseye
vulnerable
bullseye (security)
vulnerable
forky
10.6.1-1
fixed
sid
10.6.1-1
fixed
trixie
postponed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
quagga
bionic
needed
focal
needed
jammy
dne
noble
dne
plucky
dne
questing
dne
resolute
dne
xenial
needed
frr
focal
needed
jammy
Fixed 8.1-1ubuntu1.14
released
noble
Fixed 8.4.4-1.1ubuntu6.5
released
plucky
ignored
questing
Fixed 10.4.1-3ubuntu1.1
released
resolute
Fixed 10.5.1-1ubuntu2
released
Common Weakness Enumeration
References
https://github.com/FRRouting/frr/issues/19471
https://github.com/FRRouting/frr/pull/19480
https://github.com/FRRouting/frr/pull/19480/commits/fdd957408605d4a1766225630aafc7e6b7c3daf3
https://github.com/s1awwhy/BugList/blob/main/CVE-2025-61103.md