CVE-2024-31949

unknown

Published — · Modified —

💬 Discuss on Community ✚ Propose mitigation

CVSS v3

—

CVSS v4 NEW

—

not yet in upstream

VIR risk

—

Description

In FRRouting (FRR) through 9.1, an infinite loop can occur when receiving a MP/GR capability as a dynamic capability because malformed data results in a pointer not advancing.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

Mitigation details

Source: Debian Security Tracker · View original ↗ · DFSG

CVE-2024-31949 NameCVE-2024-31949 DescriptionIn FRRouting (FRR) through 9.1, an infinite loop can occur when receiving a MP/GR capability as a dynamic capability because malformed data results in a pointer not advancing. SourceCVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)…

CVE-2024-31949

Name	CVE-2024-31949
Description	In FRRouting (FRR) through 9.1, an infinite loop can occur when receiving a MP/GR capability as a dynamic capability because malformed data results in a pointer not advancing.
Source	CVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DLA-3797-1, DLA-3865-1
Debian Bugs	1072125

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
frr (PTS)	bullseye	7.5.1-1.1+deb11u2	vulnerable
	bullseye (security)	7.5.1-1.1+deb11u4	fixed
	bookworm	8.4.4-1.1~deb12u1	vulnerable
	bookworm (security)	8.4.4-1.1~deb12u2	vulnerable
	trixie	10.3-3	fixed
	trixie (security)	10.3-3+deb13u1	fixed
	forky	10.6.1-1	fixed
	sid	10.6.1-2	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Origin	Debian Bugs
frr	source	buster	7.5.1-1.1+deb10u2	DLA-3797-1
frr	source	bullseye	7.5.1-1.1+deb11u3	DLA-3865-1
frr	source	(unstable)	10.0.1-0.1		1072125

Notes

https://github.com/FRRouting/frr/pull/15640
Fixed by: https://github.com/FRRouting/frr/commit/30a332dad86fafd2b0b6c61d23de59ed969a219b

Home - Debian Security - Source (Git)

Apply commands

text fix

Notes

https://github.com/FRRouting/frr/pull/15640Fixed by: https://github.com/FRRouting/frr/commit/30a332dad86fafd2b0b6c61d23de59ed969a219b

OS impact

SUSE Affected 1 release

Version	Status	Fixed in
—	Affected	—

Debian Mixed 5 releases

Version	Status	Fixed in
trixie	Fixed	`10.0.1-0.1`
sid	Fixed	`10.0.1-0.1`
forky	Fixed	`10.0.1-0.1`
bullseye	Fixed	`7.5.1-1.1+deb11u3`
bookworm	Affected	—

References

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.