CVE-2022-43681
First published: Wed May 03 2023(Updated: )
An out-of-bounds read exists in the BGP daemon of FRRouting FRR through 8.4. When sending a malformed BGP OPEN message that ends with the option length octet (or the option length word, in case of an extended OPEN message), the FRR code reads of out of the bounds of the packet, throwing a SIGABRT signal and exiting. This results in a bgpd daemon restart, causing a Denial-of-Service condition.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/frr | <=6.0.2-2+deb10u1 | 7.5.1-1.1+deb10u1 7.5.1-1.1+deb11u2 8.4.4-1.1~deb12u1 8.4.4-1.1 |
| Frrouting Frrouting | <=8.4 | |
| Debian Debian Linux | =10.0 | |
| Debian Debian Linux | =11.0 | |
| Debian Debian Linux | =12.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://forescout.com
- https://security-tracker.debian.org/tracker/CVE-2022-43681
- https://security-tracker.debian.org/tracker/CVE-2022-40318
- https://security-tracker.debian.org/tracker/CVE-2022-40302
- https://github.com/FRRouting/frr/issues/13427
- https://github.com/FRRouting/frr/issues/13480
- https://www.cve.org/CVERecord?id=CVE-2022-43681
- https://www.cve.org/CVERecord?id=CVE-2022-40318
- https://www.cve.org/CVERecord?id=CVE-2022-40302
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1035829
- https://github.com/FRRouting/frr/commit/6c4ca9812976596bf8b5226600269fc4031f1422
- https://lists.debian.org/debian-lts-announce/2023/09/msg00020.html
- https://www.debian.org/security/2023/dsa-5495
Frequently Asked Questions
What is CVE-2022-43681?
CVE-2022-43681 is a vulnerability in the BGP daemon of FRRouting FRR through version 8.4, which allows an out-of-bounds read when sending a malformed BGP OPEN message.
How does CVE-2022-43681 affect FRRouting?
CVE-2022-43681 affects FRRouting versions up to and including 8.4, allowing an attacker to trigger an out-of-bounds read by sending a specific type of malformed BGP OPEN message.
What is the severity of CVE-2022-43681?
The severity of CVE-2022-43681 is rated as medium with a severity value of 6.5.
How can I fix CVE-2022-43681 in FRRouting?
To fix CVE-2022-43681 in FRRouting, you should update to a version that is not affected by the vulnerability, such as version 8.4.4-1.1~deb12u1 or later.
Where can I find more information about CVE-2022-43681?
You can find more information about CVE-2022-43681 on the Forescout and Debian security tracker websites.
- collector/nvd-latest
- collector/debian-bugs
- alias/CVE-2022-43681
- collector/security-tracker-debian
- collector/nvd-index
- agent/author
- agent/type
- agent/first-publish-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/weakness
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/event
- agent/description
- collector/mitre-cve
- source/MITRE
- package-manager/debian
- vendor/frrouting
- canonical/frrouting frrouting
- version/frrouting frrouting/8.4
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/10.0
- version/debian debian linux/11.0
- version/debian debian linux/12.0