855581 – (CVE-2013-6051) VUL-0: CVE-2013-6051: quagga: denial of service (bgpd crash) via a crafted BGP update

Bug 855581 (CVE-2013-6051) - VUL-0: CVE-2013-6051: quagga: denial of service (bgpd crash) via a crafted BGP update

Summary: VUL-0: CVE-2013-6051: quagga: denial of service (bgpd crash) via a crafted BG...

Status:	RESOLVED INVALID

Alias:	CVE-2013-6051

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P3 - Medium Severity: Normal
Target Milestone:	---
Assignee:	Bo Yang
QA Contact:	Security Team bot

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2013-12-16 09:04 UTC by Sebastian Krahmer
Modified:	2013-12-23 10:09 UTC (History)
CC List:	1 user (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Sebastian Krahmer 2013-12-16 09:04:00 UTC

CVE-2013-6051



References:
https://bugzilla.redhat.com/show_bug.cgi?id=1043370
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=730513
http://git.savannah.gnu.org/gitweb/?p=quagga.git;a=commitdiff;h=8794e8d229dc9fe29ea31424883433d4880ef408
http://www.debian.org/security/2013/dsa-2803
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6051
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-6051

Comment 1 Swamp Workflow Management 2013-12-17 23:00:15 UTC

bugbot adjusting priority

Comment 2 Bo Yang 2013-12-23 03:41:23 UTC

0.99.7(sles-9-teredata), 0.99.9(sles-10-sp3), 0.99.15(sles-11-sp1), 0.99.22(opensuse factory) are not affected by this bug.

We don't have to worry about this.

We can close this bug report since our release versions are not affected by this.

Comment 3 Sebastian Krahmer 2013-12-23 10:09:57 UTC

Thanks