Format: 1.8 Date: Fri, 11 Mar 2022 07:33:41 -0500 Source: frr Binary: frr frr-doc frr-pythontools frr-rpki-rtrlib frr-snmp Built-For-Profiles: noudeb Architecture: amd64 all Version: 8.1-1ubuntu1 Distribution: jammy-proposed Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: frr - FRRouting suite of internet protocols (BGP, OSPF, IS-IS, ...) frr-doc - FRRouting suite - user manual frr-pythontools - FRRouting suite - Python tools frr-rpki-rtrlib - FRRouting suite - BGP RPKI support (rtrlib) frr-snmp - FRRouting suite - SNMP support Changes: frr (8.1-1ubuntu1) jammy; urgency=medium . * SECURITY UPDATE: overflow via input packet length - debian/patches/CVE-2022-26125.patch: fix router capability TLV parsing issues in isisd/isis_tlvs.*. - debian/patches/disable_isisd_fuzz_test.patch: disable fuzz tests as the security update changed expected results in tests/isisd/test_fuzz_isis_tlv.py. - CVE-2022-26125 * SECURITY UPDATE: overflow via use of strdup with binary string - debian/patches/CVE-2022-26126.patch: use base64 encoding in isisd/isis_nb_notifications.c, lib/base64.c, lib/base64.h, lib/subdir.am, lib/yang_wrappers.c, lib/yang_wrappers.h. - CVE-2022-26126 * SECURITY UPDATE: overflow via missing check on the input packet length - debian/patches/CVE-2022-26127.patch: add check on packet length in babeld/message.c. - CVE-2022-26127 * SECURITY UPDATE: overflow via wrong checks - debian/patches/CVE-2022-26128_9.patch: fix checks on length in babeld/message.c. - CVE-2022-26128 - CVE-2022-26129 Checksums-Sha1: ca1a664f5300d5e7f1b47e6df0f1e6cc872cbd1a 16754570 frr-dbgsym_8.1-1ubuntu1_amd64.ddeb d11cb69f475c21350f0d49d44a8fae55a1415716 1468872 frr-doc_8.1-1ubuntu1_all.deb f3898760434a2a0c54928c0843fb6446e2cde3d6 23770 frr-pythontools_8.1-1ubuntu1_all.deb 807e0552ca1eb1fe376bb88371a907398b2b476d 69226 frr-rpki-rtrlib-dbgsym_8.1-1ubuntu1_amd64.ddeb 2f21021eeae423c538d82d5e94e4b96dd2f3c048 23402 frr-rpki-rtrlib_8.1-1ubuntu1_amd64.deb 0c26e7203c87e56c4c4dc6600a8a8598b40bf15c 282564 frr-snmp-dbgsym_8.1-1ubuntu1_amd64.ddeb f600ae929888689634dc4916f805112abc8ba7b6 68128 frr-snmp_8.1-1ubuntu1_amd64.deb 8d4495af4bc8be09450da4c93e1e78addd5033a6 11074 frr_8.1-1ubuntu1_amd64.buildinfo 8b28a3a6e32ea1359e7d90d0f626fc2a7e4fb61b 4198750 frr_8.1-1ubuntu1_amd64.deb Checksums-Sha256: 056c5740af577aaf47d82cd896adc73c3152ddba03f65414a58a834fd1580cff 16754570 frr-dbgsym_8.1-1ubuntu1_amd64.ddeb 4a9f0550a69415c269b3717d9655992dc3e73a8d3a1949c7281ed4c07151ac4c 1468872 frr-doc_8.1-1ubuntu1_all.deb 736195437d4e9c21dacca25fd56d6270c633df46d08b8ecec66cae0d381a9b7f 23770 frr-pythontools_8.1-1ubuntu1_all.deb d27178133e30e9fb7aa616f9db3b9b8b8d36728d685f175763e089a6414ecd7f 69226 frr-rpki-rtrlib-dbgsym_8.1-1ubuntu1_amd64.ddeb 0461cc62ea10aa0dba912298e00f02ea8a061438bacc5c709cbc7524019892b3 23402 frr-rpki-rtrlib_8.1-1ubuntu1_amd64.deb 5ebb17a8989e4857bfdcdffa320b02741a82f33d1d7c93a088474c8b0d996e5e 282564 frr-snmp-dbgsym_8.1-1ubuntu1_amd64.ddeb b93d7864bb22707d6664c56d934e27da7d811cfbd9aa859a580b9f0e6ab60c60 68128 frr-snmp_8.1-1ubuntu1_amd64.deb 34b4602d1e17f75af5dc9b088aaeb064eaf1c8dfa30f7dd7cbbcf7b7e4882b59 11074 frr_8.1-1ubuntu1_amd64.buildinfo 7722d6b0ca8a3121ba92a79502d44912f199b41d4053e38d3ec408cab5433136 4198750 frr_8.1-1ubuntu1_amd64.deb Files: 342546b2dc8c8ba99e99bbccb7b2d8bb 16754570 debug optional frr-dbgsym_8.1-1ubuntu1_amd64.ddeb 5f2034f50e47ad59527a813576fe196e 1468872 doc optional frr-doc_8.1-1ubuntu1_all.deb 1a94cebcc550f2198ebc876cd14f920c 23770 net optional frr-pythontools_8.1-1ubuntu1_all.deb 5217ca6dc5185a12cbb975f23fddc259 69226 debug optional frr-rpki-rtrlib-dbgsym_8.1-1ubuntu1_amd64.ddeb 6e2a94eed37ae854e2472c22b5d9b7e3 23402 net optional frr-rpki-rtrlib_8.1-1ubuntu1_amd64.deb 40811915b46058ab2dd5f3d40c433a2e 282564 debug optional frr-snmp-dbgsym_8.1-1ubuntu1_amd64.ddeb 3b0c3ed71624143c5c6741c9e0404875 68128 net optional frr-snmp_8.1-1ubuntu1_amd64.deb 86c66a329b8c033bcc3b5fb22d023d9f 11074 net optional frr_8.1-1ubuntu1_amd64.buildinfo 8402ae6e100a72c93920cf6fca17bf94 4198750 net optional frr_8.1-1ubuntu1_amd64.deb Original-Maintainer: David Lamparter