lp:ubuntu/hoary-security/quagga
- Get this branch:
- bzr branch lp:ubuntu/hoary-security/quagga
Branch merges
Branch information
Recent revisions
- 3. By Martin Pitt
-
* SECURITY UPDATE: Remote route injection, authentication bypass, remote
DoS.
* ripd/ripd.c, ripd/rip_interface. c:
- When RIPv2 authentication is required, disable RIPv1 or require
authentication as well (remote attackers could get routing information
by sending RIPv1 requests). [CVE-2006-2223]
- Enforce RIPv2 authentication requirements (remote attackers could
modify routing state via RIPv1 RESPONSE packets). [CVE-2006-2224]
- Patch ported from CVS head, see
http://bugzilla. quagga. net/show_ bug.cgi? id=262
* bgpd/bgp_community. c:
- Fix infinite loop with special invalid 'sh ip bgp' command.
[CVE-2006-2276]
- Patch ported from 0.99.4. - 2. By Michael Vogt
-
"Changed permission setting in postinst script (thanks to Bastian Blank).
Closes: #292690" ported from debian/unstable (closes: #5971)
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/karmic/quagga