The Quagga BGP daemon (bgpd) prior to version 1.2.3 does not properly bounds check the data sen…

The Quagga BGP daemon (bgpd) prior to version 1.2.3 can double-free memory when processing cert…

The Quagga BGP daemon (bgpd) prior to version 1.2.3 has a bug in its parsing of "Capabilities" …

All versions of Quagga, 0.93 through 1.1.0, are vulnerable to an unbounded memory allocation in…

The aspath_put function in bgpd/bgp_aspath.c in Quagga before 1.2.2 allows remote attackers to …

The Quagga BGP daemon (bgpd) prior to version 1.2.3 can overrun internal BGP code-to-string con…

The extended-community parser in bgpd in Quagga before 0.99.18 allows remote attackers to cause…

The bgp_nlri_parse_vpnv4 function in bgp_mplsvpn.c in the VPNv4 NLRI parser in bgpd in Quagga b…

RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly implement configurations that (1…

The vty layer in Quagga before 0.96.4, and Zebra 0.93b and earlier, does not verify that sub-ne…

Heap-based buffer overflow in the ecommunity_ecom2str function in bgp_ecommunity.c in bgpd in Q…

The ospf6_lsa_is_changed function in ospf6_lsa.c in the OSPFv3 implementation in ospf6d in Quag…

The OSPFv3 implementation in ospf6d in Quagga before 0.99.19 allows remote attackers to cause a…

The ospf_flood function in ospf_flood.c in ospfd in Quagga before 0.99.19 allows remote attacke…

ospf_packet.c in ospfd in Quagga before 0.99.19 allows remote attackers to cause a denial of se…

The bgp_dump_routes_func function in bgpd/bgp_dump.c in Quagga does not perform size checks whe…

Stack-based buffer overflow in the bgp_route_refresh_receive function in bgp_packet.c in bgpd i…

It was discovered that the zebra daemon in Quagga before 1.0.20161017 suffered from a stack-bas…

The BGP daemon (bgpd) in Quagga 0.99.11 and earlier allows remote attackers to cause a denial o…

The BGP implementation in bgpd in Quagga before 0.99.20.1 does not properly use message buffers…

bgpd in Quagga before 0.99.17 does not properly parse AS paths, which allows remote attackers t…

bgpd in Quagga before 0.99.18 allows remote attackers to cause a denial of service (session res…

The bgp_attr_unknown function in bgp_attr.c in Quagga 0.99.21 does not properly initialize the …

Stack-based buffer overflow in the new_msg_lsa_change_notify function in the OSPFD API (ospf_ap…

Buffer overflow in the ospf_ls_upd_list_lsa function in ospf_packet.c in the OSPFv2 implementat…

bgpd/bgp_attr.c in Quagga 0.98.6 and earlier, and 0.99.6 and earlier 0.99 versions, does not va…

bgpd in Quagga before 0.99.9 allows explicitly configured BGP peers to cause a denial of servic…

quagga (ospf6d) 0.99.21 has a DoS flaw in the way the ospf6d daemon performs routes removal

Buffer overflow in the OSPFv2 implementation in ospfd in Quagga before 0.99.20.1 allows remote …

Open Shortest Path First (OSPF) protocol implementations may improperly determine Link State Ad…

The bgp_capability_orf function in bgpd in Quagga 0.99.20.1 and earlier allows remote attackers…

An issue was discovered in Quagga through 1.2.4. Unsafe chown/chmod operations in the suggested…

bgpd in Quagga 0.98 and 0.99 before 20060504 allows local users to cause a denial of service (C…