SECURITY: "This release provides two important bugfixes, which address remote crash possibility in bgpd discovered by CROSS team.": 1. Stack buffer overflow by processing certain Route-Refresh messages CVE-2010-2948 2. DoS (crash) while processing certain BGP update AS path messages CVE-2010-2949 Closes: #594262