CVE-2025-61107
EUVD-2025-3652628.10.2025, 15:16
FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_pref_pref_sid function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted LSA Update packet.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| frrouting | frrouting | 4.0 ≤ 𝑥 ≤ 10.4.1 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||
|---|---|---|---|---|---|---|---|
| frr |
| ||||||
| frr-devel |
| ||||||
| libfrr0 |
| ||||||
| libfrr_pb0 |
| ||||||
| libfrrcares0 |
| ||||||
| libfrrfpm_pb0 |
| ||||||
| libfrrgrpc_pb0 |
| ||||||
| libfrrospfapiclient0 |
| ||||||
| libfrrsnmp0 |
| ||||||
| libfrrzmq0 |
| ||||||
| libmgmt_be_nb0 |
| ||||||
| libmlag_pb0 |
|
Azure Linux Releases
Common Weakness Enumeration