Bug#841162: quagga: CVE-2016-1245: zebra: stack overrun in IPv6 RA receive code

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#841162: quagga: CVE-2016-1245: zebra: stack overrun in IPv6 RA receive code
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Tue, 18 Oct 2016 09:54:48 +0200
Message-id: <[🔎] 147677728863.29191.8989326113763733210.reportbug@lorien.valinor.li>
Reply-to: Salvatore Bonaccorso <carnil@debian.org>, 841162@bugs.debian.org

Source: quagga
Version: 0.99.23.1-1
Severity: grave
Tags: security upstream patch

Hi,

the following vulnerability was published for quagga.

CVE-2016-1245[0]:
zebra: stack overrun in IPv6 RA receive code

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2016-1245

Please adjust the affected versions in the BTS as needed.

Regards,
Salvatore

Reply to:

Follow-Ups:
- Bug#841162: marked as done (quagga: CVE-2016-1245: zebra: stack overrun in IPv6 RA receive code)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)
- Bug#841162: marked as done (quagga: CVE-2016-1245: zebra: stack overrun in IPv6 RA receive code)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: Bug#793086: me too
Next by Date: Bug#841192: mozplugger: mplayer2 has gone away
Previous by thread: Bug#793086: me too
Next by thread: Bug#841162: marked as done (quagga: CVE-2016-1245: zebra: stack overrun in IPv6 RA receive code)
Index(es):
- Date
- Thread