|
|
>> Fedora Security Update Fixes Quagga Request Handling Denial of Service Vulnerabilities
|
Title : Fedora Security Update Fixes Quagga Request Handling Denial of Service Vulnerabilities
VUPEN ID : VUPEN/ADV-2006-2930
CVE ID : CVE-2006-2223 - CVE-2006-2224
Rated as : Low Risk 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2006-07-24
|
Fedora has released updated packages to address multiple vulnerabilities identified in Quagga. These flaws could be exploited by attackers to cause a denial of service. For additional information, see : VUPEN/ADV-2006-1813
Affected Products
Fedora Core 4
Fedora Core 5
Solution
Upgrade the affected packages :
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/
28ad931ca39314daa9b8e678e9bb42451ea96c41 SRPMS/quagga-0.98.6-1.fc4.src.rpm
28ad931ca39314daa9b8e678e9bb42451ea96c41 noarch/quagga-0.98.6-1.fc4.src.rpm
aeb32fb9cacee84effef9ad8746fa97ec4692d2d ppc/quagga-0.98.6-1.fc4.ppc.rpm
2643b756dfc1a8cdecb39ca91c4abaf6c3751307 ppc/quagga-contrib-0.98.6-1.fc4.ppc.rpm
576f5d0325298b648c8649ff1987c29d2bcde8f4 ppc/quagga-devel-0.98.6-1.fc4.ppc.rpm
bf5cf98950d47068539c4811302bf8116165926a ppc/debug/quagga-debuginfo-0.98.6-1.fc4.ppc.rpm
117d288ef96c480eb73bd1d4e88a4649001d5421 x86_64/quagga-0.98.6-1.fc4.x86_64.rpm
3d6b182b799695e97f8db010ce7ee409acd33907 x86_64/quagga-contrib-0.98.6-1.fc4.x86_64.rpm
3b18d9eb66dbd9b0a36f20fa2f268402b82cf3b8 x86_64/quagga-devel-0.98.6-1.fc4.x86_64.rpm
1c1723d87b0726dca62c44957b519b8d8b8509de x86_64/debug/quagga-debuginfo-0.98.6-1.fc4.x86_64.rpm
6accc299079774cde03789213bb72f37b0cfa57c i386/quagga-0.98.6-1.fc4.i386.rpm
36fb799862b7e10c9ca5108130ae89b49b6edd7e i386/quagga-contrib-0.98.6-1.fc4.i386.rpm
66a0b9b172ad17de778137aa42aaa1721cec77f2 i386/quagga-devel-0.98.6-1.fc4.i386.rpm
8940188cddda148879f6d6daf43d6d3a94138bc4 i386/debug/quagga-debuginfo-0.98.6-1.fc4.i386.rpm
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/
3f0ec2dfd8924ac940b95c3d08a04ac07a5c09f7 SRPMS/quagga-0.98.6-1.FC5.src.rpm
3f0ec2dfd8924ac940b95c3d08a04ac07a5c09f7 noarch/quagga-0.98.6-1.FC5.src.rpm
ae431960f316c065ddb50f37ac940744bd84f694 ppc/quagga-0.98.6-1.FC5.ppc.rpm
4123779f631a9f078196e01af3bd64bf0a533461 ppc/quagga-contrib-0.98.6-1.FC5.ppc.rpm
3badc80f36d164756fa7c85c6abe67efbe0e03c0 ppc/quagga-devel-0.98.6-1.FC5.ppc.rpm
1cdb690c58fac30b82cdf64db79fa3376b15abad ppc/debug/quagga-debuginfo-0.98.6-1.FC5.ppc.rpm
5909eb25fe09a2c6921a278f8fda6e7b70aa375b x86_64/quagga-0.98.6-1.FC5.x86_64.rpm
73d574c74ddff159e82b4b167b2368c6a699d71b x86_64/quagga-contrib-0.98.6-1.FC5.x86_64.rpm
b67d13ce530667c3264676c1906ca9fcd77c9ef7 x86_64/quagga-devel-0.98.6-1.FC5.x86_64.rpm
1e46d28c23836874b73c572f04f51e51c3b81dcb x86_64/debug/quagga-debuginfo-0.98.6-1.FC5.x86_64.rpm
4203ccf632130e70f4584e798b332ceedc8f4e5e i386/quagga-0.98.6-1.FC5.i386.rpm
809821788fcd4e84700b231664d589a5186c36d6 i386/quagga-contrib-0.98.6-1.FC5.i386.rpm
2e14a27ddbb2cdf0cba130dd2c6c00fe74803674 i386/quagga-devel-0.98.6-1.FC5.i386.rpm
273b44b76c1422c19433c26faf7939a051b57894 i386/debug/quagga-debuginfo-0.98.6-1.FC5.i386.rpm
References
http://www.vupen.com/english/advisories/2006/2930
https://www.redhat.com/archives/fedora-package-announce/2006-July/msg00090.html
https://www.redhat.com/archives/fedora-package-announce/2006-July/msg00092.html
ChangeLog
2006-07-24 : Initial release
Vulnerability Management
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form. | |
|
