ID de Prueba:	1.3.6.1.4.1.25623.1.0.856521
Categoría:	openSUSE Local Security Checks
Título:	openSUSE Security Advisory (SUSE-SU-2024:3478-1)
Resumen:	The remote host is missing an update for the 'quagga' package(s) announced via the SUSE-SU-2024:3478-1 advisory.
Descripción:	Summary: The remote host is missing an update for the 'quagga' package(s) announced via the SUSE-SU-2024:3478-1 advisory. Vulnerability Insight: This update for quagga fixes the following issues: - CVE-2017-15865: sensitive information disclosed when malformed BGP UPDATE packets are processed. (bsc#1230866) - CVE-2024-44070: crash when parsing Tunnel Encap attribute due to no length check. (bsc#1229438) - CVE-2022-37032: out-of-bounds read when parsing a BGP capability message due to incorrect size check. (bsc#1202023) Affected Software/OS: 'quagga' package(s) on openSUSE Leap 15.5, openSUSE Leap 15.6. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-15865 BugTraq ID: 101794 http://www.securityfocus.com/bid/101794 Common Vulnerability Exposure (CVE) ID: CVE-2022-37032 Debian Security Information: DSA-5362 (Google Search) https://www.debian.org/security/2023/dsa-5362 https://github.com/FRRouting/frr/commit/6d58272b4cf96f0daa846210dd2104877900f921 https://github.com/FRRouting/frr/commit/ff6db1027f8f36df657ff2e5ea167773752537ed https://lists.debian.org/debian-lts-announce/2022/11/msg00039.html Common Vulnerability Exposure (CVE) ID: CVE-2024-44070
Copyright	Copyright (C) 2024 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.