[GTER] Fwd: [FROG] New Releases of FRR
Humberto Galiza
humbertogaliza at gmail.com
Thu Jan 10 08:14:41 -02 2019
(desculpem eventuais duplicatas)
FYI. Sugiro a quem utiliza o VyOS com o FRR ao invés do Quagga
verificar se já há uma atualização do VyOS disponível com esse patch.
[]s!
Humberto Galiza
---------- Forwarded message ---------
From: Donald Sharp <sharpd at cumulusnetworks.com>
Date: Thu, 10 Jan 2019 at 01:35
Subject: [FROG] New Releases of FRR
To: frog <frog at lists.frrouting.org>, FRRouting-Dev
<dev at lists.frrouting.org>, <announce at lists.frrouting.org>
All -
On Monday a research group installed into the global BGP routing table
a prefix with a attribute type of 0xFF, which is designated as
experimental by BGP RFC's. FRR had a developmental escape that read
this attribute incorrectly and caused the bgp peering session to flap.
If you have compiled FRR with the `--enable-bgp-vnc` option and run
BGP as a peer on the global routing table you are vulnerable to this
issue. This issue has been fixed in FRR with this commit:
https://github.com/FRRouting/frr/commit/943d595a018e69b550db08cccba1d0778a86705a
We have applied this fix to the stable/3.0(3.0.4), stable/4.0(4.0.1),
stable/5.0(5.0.2) and stable/6.0(6.0.2) branches. New releases can be
found here:
https://github.com/FRRouting/frr/releases/tag/frr-3.0.4
https://github.com/FRRouting/frr/releases/tag/frr-4.0.1
https://github.com/FRRouting/frr/releases/tag/frr-5.0.2
https://github.com/FRRouting/frr/releases/tag/frr-6.0.2
Snap packaging and the FreeBSD ports have been updated as well. We
recommend you update your installation of FRR immediately.
At this point we are applying for a CVE and will announce that
information when we have it.
In the near future we plan to implement RFC-7606 to handle this
situation better in BGP, if you have any questions please feel free to
email me, or to open up discussions on the frog alias.
thanks!
donald
_______________________________________________
frog mailing list
frog at lists.frrouting.org
https://lists.frrouting.org/listinfo/frog
More information about the gter
mailing list