[SECURITY] [DLA 1152-1] quagga security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 1152-1] quagga security update
From: Hugo Lefeuvre <hle@debian.org>
Date: Tue, 31 Oct 2017 15:53:39 +0100
Message-id: <[🔎] 20171031145339.aegbf7477sj7c3db@hle-laptop.local>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : quagga
Version        : quagga_0.99.22.4-1+wheezy3+deb7u2
CVE ID         : CVE-2017-16227
Debian Bug     : 879474 

It was discovered that the bgpd daemon in the Quagga routing suite
does not properly calculate the length of multi-segment AS_PATH UPDATE
messages, causing bgpd to drop a session and potentially resulting in
loss of network connectivity.

For Debian 7 "Wheezy", these problems have been fixed in version
quagga_0.99.22.4-1+wheezy3+deb7u2.

We recommend that you upgrade your quagga packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCgAdFiEE5LpPtQuYJzvmooL3LVy48vb3khkFAln4jecACgkQLVy48vb3
khk9Lwf+O6XzblrxsJ6cBJGR+zes2B2ztLWhut/+fM1J8x9M+iNQGzNyXqp+cgZv
5jOik68Mq2cj3vB4MJIhHoYlEUQS8iaKZHih9/0uTzPw9mgY08ZgkChl71a6JVbY
U2Nuo4FxAMTRQ2a43YpEvuct8/YOHuFBORntvBmILN3OYCRGCHSpCk8om3QgdaM/
AD0ql6nH+d0dajI/zMIDCcG4ZN5k81t0Vpo1keH/Y2agb+zzl8vWdxeytIYYBBfD
ldMmuMSsrpjYmPkbkAT6bCBYwZQvIVyIHjRdjsbPtPtnsYkdscfgOcIV55KBBzZS
t+Et40tN3a/bEAKROdtL5CrqPa7d4w==
=NQ5a
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 1150-1] wpa security update
Next by Date: [SECURITY] [DLA 1151-1] wordpress security update
Previous by thread: [SECURITY] [DLA 1150-1] wpa security update
Next by thread: [SECURITY] [DLA 1151-1] wordpress security update
Index(es):
- Date
- Thread