CVE-2023-38407
Description
bgpd/bgp_label.c in FRRouting (FRR) before 8.5 attempts to read beyond the end of the stream during labeled unicast parsing.
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Mitigation details
CVE-2023-38407 NameCVE-2023-38407 Descriptionbgpd/bgp_label.c in FRRouting (FRR) before 8.5 attempts to read beyond the end of the stream during labeled unicast parsing. SourceCVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) ReferencesDLA-3797-1, DLA-3865-1 Debian Bugs1055852 Vulnerable andβ¦
CVE-2023-38407
| Name | CVE-2023-38407 |
| Description | bgpd/bgp_label.c in FRRouting (FRR) before 8.5 attempts to read beyond the end of the stream during labeled unicast parsing. |
| Source | CVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
| References | DLA-3797-1, DLA-3865-1 |
| Debian Bugs | 1055852 |
Vulnerable and fixed packages
The table below lists information on source packages.
| Source Package | Release | Version | Status |
|---|---|---|---|
| frr (PTS) | bullseye | 7.5.1-1.1+deb11u2 | vulnerable |
| bullseye (security) | 7.5.1-1.1+deb11u4 | fixed | |
| bookworm | 8.4.4-1.1~deb12u1 | vulnerable | |
| bookworm (security) | 8.4.4-1.1~deb12u2 | vulnerable | |
| trixie | 10.3-3 | fixed | |
| trixie (security) | 10.3-3+deb13u1 | fixed | |
| forky | 10.6.1-1 | fixed | |
| sid | 10.6.1-2 | fixed |
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|---|---|---|---|---|---|
| frr | source | buster | 7.5.1-1.1+deb10u2 | DLA-3797-1 | ||
| frr | source | bullseye | 7.5.1-1.1+deb11u3 | DLA-3865-1 | ||
| frr | source | (unstable) | 9.1-0.1 | 1055852 |
Notes
https://github.com/FRRouting/frr/pull/12951
https://github.com/FRRouting/frr/commit/7404a914b0cafe046703c8381903a80d3def8f8b (base_9.0)
https://github.com/FRRouting/frr/pull/12956
https://github.com/FRRouting/frr/commit/ab362eae68edec12c175d9bc488bcc3f8b73d36f (frr-8.5)
Apply commands
https://github.com/FRRouting/frr/pull/12951https://github.com/FRRouting/frr/commit/7404a914b0cafe046703c8381903a80d3def8f8b (base_9.0)https://github.com/FRRouting/frr/pull/12956https://github.com/FRRouting/frr/commit/ab362eae68edec12c175d9bc488bcc3f8b73d36f (frr-8.5)OS impact
SUSE Affected 1 release
| Version | Status | Fixed in |
|---|---|---|
| β | Affected | β |
Debian Mixed 5 releases
| Version | Status | Fixed in |
|---|---|---|
| trixie | Fixed | 9.1-0.1 |
| sid | Fixed | 9.1-0.1 |
| forky | Fixed | 9.1-0.1 |
| bullseye | Fixed | 7.5.1-1.1+deb11u3 |
| bookworm | Affected | β |
Red Hat Fixed 2 releases
| Version | Status | Fixed in |
|---|---|---|
| 9 | Fixed | β |
| 8 | Fixed | β |
Rocky Linux Fixed 1 release
| Version | Status | Fixed in |
|---|---|---|
| 8 | Fixed | β |
References
- https://access.redhat.com/errata/RHSA-2024:0477
- https://errata.rockylinux.org/RLSA-2024:0130
- https://security-tracker.debian.org/tracker/CVE-2023-38407
- https://www.suse.com/security/cve/CVE-2023-38407.html
- https://access.redhat.com/errata/RHSA-2024:0130
- https://bugzilla.redhat.com/2248207
- https://bugzilla.redhat.com/2248208
- https://bugzilla.redhat.com/2248526
- https://bugzilla.redhat.com/2248528
- https://errata.almalinux.org/8/ALSA-2024-0130.html
- https://errata.almalinux.org/9/ALSA-2024-0477.html
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.