1211248 – (CVE-2023-31489) VUL-0: CVE-2023-31489: frr: remote denial of service via the bgp_capability_llgr() function

Bug 1211248 (CVE-2023-31489) - VUL-0: CVE-2023-31489: frr: remote denial of service via the bgp_capability_llgr() function

Summary: VUL-0: CVE-2023-31489: frr: remote denial of service via the bgp_capability_l...

Status:	RESOLVED FIXED

Alias:	CVE-2023-31489

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P3 - Medium Severity: Normal
Target Milestone:	---
Assignee:	Security Team bot
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/365733/
Whiteboard:	CVSSv3.1:SUSE:CVE-2023-31489:5.5:(AV:...
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2023-05-10 05:39 UTC by Alexander Bergmann
Modified:	2024-04-18 07:44 UTC (History)
CC List:	3 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
bgpd: Check 7 bytes for Long-lived Graceful-Restart capability (1.77 KB, patch) 2023-05-15 08:21 UTC, Marius Tomaschewski	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Alexander Bergmann 2023-05-10 05:39:51 UTC

CVE-2023-31489

An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a
denial of service via the bgp_capability_llgr() function.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-31489
https://www.cve.org/CVERecord?id=CVE-2023-31489
https://github.com/FRRouting/frr/issues/13098

Comment 1 Marius Tomaschewski 2023-05-15 08:21:46 UTC

Created attachment 867025 [details]
bgpd: Check 7 bytes for Long-lived Graceful-Restart capability

Cherry-picked patch for 8.4:
- https://github.com/FRRouting/frr/issues/13098
  - https://github.com/FRRouting/frr/pull/13100
    -  https://github.com/FRRouting/frr/commit/b1d33ec293e8e36fbb8766252f3b016d268e31ce

Comment 9 Maintenance Automation 2023-06-15 08:30:04 UTC

SUSE-SU-2023:2518-1: An update that solves two vulnerabilities can now be installed.

Category: security (important)
Bug References: 1211248, 1211249
CVE References: CVE-2023-31489, CVE-2023-31490
Sources used:
openSUSE Leap 15.5 (src): frr-8.4-150500.4.3.1
Server Applications Module 15-SP5 (src): frr-8.4-150500.4.3.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.

Comment 10 Marius Tomaschewski 2023-06-26 08:47:00 UTC

Setting assignee (back to) security team.

Comment 11 Marcus Meissner 2024-04-18 07:44:35 UTC

close