1
PublicDateAtUSN: 2011-10-10
2
Candidate: CVE-2011-3324
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3324
6
http://www.debian.org/security/2011/dsa-2316
7
https://usn.ubuntu.com/usn/usn-1261-1
9
The ospf6_lsa_is_changed function in ospf6_lsa.c in the OSPFv3
10
implementation in ospf6d in Quagga before 0.99.19 allows remote attackers
11
to cause a denial of service (assertion failure and daemon exit) via
12
trailing zero values in the Link State Advertisement (LSA) header list of
13
an IPv6 Database Description message.
18
Discovered-by: Riku Hietamäki, Tuomo Untinen and Jukka Taimisto
22
upstream_quagga: released (0.99.19)
23
hardy_quagga: ignored (reached end-of-life)
24
lucid_quagga: released (0.99.15-1ubuntu0.3)
25
maverick_quagga: released (0.99.17-1ubuntu0.2)
26
natty_quagga: released (0.99.17-4ubuntu1.1)
27
oneiric_quagga: released (0.99.18-2ubuntu0.1)
28
devel_quagga: not-affected (0.99.20-3)