Security update for frr SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2024:4090-1 Final 1 1 2024-11-28T07:57:59Z current 2024-11-28T07:57:59Z 2024-11-28T07:57:59Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for frr This update for frr fixes the following issues: Update to frr 8.5.6 (jsc#PED-PED-11092) including fixes for: - CVE-2024-44070,CVE-2024-34088,CVE-2024-31951,CVE-2024-31950, CVE-2024-31948,CVE-2024-27913,CVE-2023-47235,CVE-2023-47234, CVE-2023-46753,CVE-2023-46752,CVE-2023-41909,CVE-2023-41360, CVE-2023-41358,CVE-2023-38802,CVE-2023-38407,CVE-2023-38406, CVE-2023-3748,CVE-2023-31490,CVE-2023-31489 and other bugfixes. See https://frrouting.org/release/8.5.6/ for details. The most recent frr 8.x series provides several new features, improvements and bug fixes for various protocols and daemons, especially for PIM/PIMv6/BGP and VRF support. See https://frrouting.org/release/8.5/ for details and links. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2024-4090,SUSE-SLE-Module-Server-Applications-15-SP5-2024-4090,SUSE-SLE-Module-Server-Applications-15-SP6-2024-4090,openSUSE-SLE-15.5-2024-4090,openSUSE-SLE-15.6-2024-4090 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ Link for SUSE-SU-2024:4090-1 https://lists.suse.com/pipermail/sle-security-updates/2024-November/019857.html E-Mail link for SUSE-SU-2024:4090-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2023-31489/ SUSE CVE CVE-2023-31489 page https://www.suse.com/security/cve/CVE-2023-31490/ SUSE CVE CVE-2023-31490 page https://www.suse.com/security/cve/CVE-2023-3748/ SUSE CVE CVE-2023-3748 page https://www.suse.com/security/cve/CVE-2023-38406/ SUSE CVE CVE-2023-38406 page https://www.suse.com/security/cve/CVE-2023-38407/ SUSE CVE CVE-2023-38407 page https://www.suse.com/security/cve/CVE-2023-38802/ SUSE CVE CVE-2023-38802 page https://www.suse.com/security/cve/CVE-2023-41358/ SUSE CVE CVE-2023-41358 page https://www.suse.com/security/cve/CVE-2023-41360/ SUSE CVE CVE-2023-41360 page https://www.suse.com/security/cve/CVE-2023-41909/ SUSE CVE CVE-2023-41909 page https://www.suse.com/security/cve/CVE-2023-46752/ SUSE CVE CVE-2023-46752 page https://www.suse.com/security/cve/CVE-2023-46753/ SUSE CVE CVE-2023-46753 page https://www.suse.com/security/cve/CVE-2023-47234/ SUSE CVE CVE-2023-47234 page https://www.suse.com/security/cve/CVE-2023-47235/ SUSE CVE CVE-2023-47235 page https://www.suse.com/security/cve/CVE-2024-27913/ SUSE CVE CVE-2024-27913 page https://www.suse.com/security/cve/CVE-2024-31948/ SUSE CVE CVE-2024-31948 page https://www.suse.com/security/cve/CVE-2024-31950/ SUSE CVE CVE-2024-31950 page https://www.suse.com/security/cve/CVE-2024-31951/ SUSE CVE CVE-2024-31951 page https://www.suse.com/security/cve/CVE-2024-34088/ SUSE CVE CVE-2024-34088 page https://www.suse.com/security/cve/CVE-2024-44070/ SUSE CVE CVE-2024-44070 page SUSE Linux Enterprise Module for Server Applications 15 SP5 SUSE Linux Enterprise Module for Server Applications 15 SP6 openSUSE Leap 15.5 openSUSE Leap 15.6 frr-8.5.6-150500.4.30.1 frr-devel-8.5.6-150500.4.30.1 libfrr0-8.5.6-150500.4.30.1 libfrr_pb0-8.5.6-150500.4.30.1 libfrrcares0-8.5.6-150500.4.30.1 libfrrfpm_pb0-8.5.6-150500.4.30.1 libfrrospfapiclient0-8.5.6-150500.4.30.1 libfrrsnmp0-8.5.6-150500.4.30.1 libfrrzmq0-8.5.6-150500.4.30.1 libmlag_pb0-8.5.6-150500.4.30.1 frr-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 frr-devel-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 libfrr0-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 libfrr_pb0-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 libfrrcares0-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 libfrrfpm_pb0-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 libfrrospfapiclient0-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 libfrrsnmp0-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 libfrrzmq0-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 libmlag_pb0-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP5 frr-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP6 frr-devel-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP6 libfrr0-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP6 libfrr_pb0-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP6 libfrrcares0-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP6 libfrrfpm_pb0-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP6 libfrrospfapiclient0-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP6 libfrrsnmp0-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP6 libfrrzmq0-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP6 libmlag_pb0-8.5.6-150500.4.30.1 as a component of SUSE Linux Enterprise Module for Server Applications 15 SP6 frr-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.5 frr-devel-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.5 libfrr0-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.5 libfrr_pb0-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.5 libfrrcares0-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.5 libfrrfpm_pb0-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.5 libfrrospfapiclient0-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.5 libfrrsnmp0-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.5 libfrrzmq0-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.5 libmlag_pb0-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.5 frr-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.6 frr-devel-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.6 libfrr0-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.6 libfrr_pb0-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.6 libfrrcares0-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.6 libfrrfpm_pb0-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.6 libfrrospfapiclient0-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.6 libfrrsnmp0-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.6 libfrrzmq0-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.6 libmlag_pb0-8.5.6-150500.4.30.1 as a component of openSUSE Leap 15.6 An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgp_capability_llgr() function. CVE-2023-31489 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2023-31489.html CVE-2023-31489 https://bugzilla.suse.com/1211248 SUSE Bug 1211248 An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgp_attr_psid_sub() function. CVE-2023-31490 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2023-31490.html CVE-2023-31490 https://bugzilla.suse.com/1211249 SUSE Bug 1211249 A flaw was found in FRRouting when parsing certain babeld unicast hello messages that are intended to be ignored. This issue may allow an attacker to send specially crafted hello messages with the unicast flag set, the interval field set to 0, or any TLV that contains a sub-TLV with the Mandatory flag set to enter an infinite loop and cause a denial of service. CVE-2023-3748 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2023-3748.html CVE-2023-3748 https://bugzilla.suse.com/1213434 SUSE Bug 1213434 bgpd/bgp_flowspec.c in FRRouting (FRR) before 8.4.3 mishandles an nlri length of zero, aka a "flowspec overflow." CVE-2023-38406 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2023-38406.html CVE-2023-38406 https://bugzilla.suse.com/1216900 SUSE Bug 1216900 bgpd/bgp_label.c in FRRouting (FRR) before 8.5 attempts to read beyond the end of the stream during labeled unicast parsing. CVE-2023-38407 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2023-38407.html CVE-2023-38407 https://bugzilla.suse.com/1216899 SUSE Bug 1216899 FRRouting FRR 7.5.1 through 9.0 and Pica8 PICOS 4.3.3.2 allow a remote attacker to cause a denial of service via a crafted BGP update with a corrupted attribute 23 (Tunnel Encapsulation). CVE-2023-38802 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2023-38802.html CVE-2023-38802 https://bugzilla.suse.com/1213284 SUSE Bug 1213284 An issue was discovered in FRRouting FRR through 9.0. bgpd/bgp_packet.c processes NLRIs if the attribute length is zero. CVE-2023-41358 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2023-41358.html CVE-2023-41358 https://bugzilla.suse.com/1214735 SUSE Bug 1214735 An issue was discovered in FRRouting FRR through 9.0. bgpd/bgp_packet.c can read the initial byte of the ORF header in an ahead-of-stream situation. CVE-2023-41360 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2023-41360.html CVE-2023-41360 https://bugzilla.suse.com/1214739 SUSE Bug 1214739 An issue was discovered in FRRouting FRR through 9.0. bgp_nlri_parse_flowspec in bgpd/bgp_flowspec.c processes malformed requests with no attributes, leading to a NULL pointer dereference. CVE-2023-41909 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2023-41909.html CVE-2023-41909 https://bugzilla.suse.com/1215065 SUSE Bug 1215065 An issue was discovered in FRRouting FRR through 9.0.1. It mishandles malformed MP_REACH_NLRI data, leading to a crash. CVE-2023-46752 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2023-46752.html CVE-2023-46752 https://bugzilla.suse.com/1216627 SUSE Bug 1216627 An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur for a crafted BGP UPDATE message without mandatory attributes, e.g., one with only an unknown transit attribute. CVE-2023-46753 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2023-46753.html CVE-2023-46753 https://bugzilla.suse.com/1216626 SUSE Bug 1216626 An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when processing a crafted BGP UPDATE message with a MP_UNREACH_NLRI attribute and additional NLRI data (that lacks mandatory path attributes). CVE-2023-47234 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2023-47234.html CVE-2023-47234 https://bugzilla.suse.com/1216897 SUSE Bug 1216897 An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when a malformed BGP UPDATE message with an EOR is processed, because the presence of EOR does not lead to a treat-as-withdraw outcome. CVE-2023-47235 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2023-47235.html CVE-2023-47235 https://bugzilla.suse.com/1216896 SUSE Bug 1216896 ospf_te_parse_te in ospfd/ospf_te.c in FRRouting (FRR) through 9.1 allows remote attackers to cause a denial of service (ospfd daemon crash) via a malformed OSPF LSA packet, because of an attempted access to a missing attribute field. CVE-2024-27913 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2024-27913.html CVE-2024-27913 https://bugzilla.suse.com/1220548 SUSE Bug 1220548 In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash. CVE-2024-31948 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2024-31948.html CVE-2024-31948 https://bugzilla.suse.com/1222518 SUSE Bug 1222518 In FRRouting (FRR) through 9.1, there can be a buffer overflow and daemon crash in ospf_te_parse_ri for OSPF LSA packets during an attempt to read Segment Routing subTLVs (their size is not validated). CVE-2024-31950 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2024-31950.html CVE-2024-31950 https://bugzilla.suse.com/1222526 SUSE Bug 1222526 In the Opaque LSA Extended Link parser in FRRouting (FRR) through 9.1, there can be a buffer overflow and daemon crash in ospf_te_parse_ext_link for OSPF LSA packets during an attempt to read Segment Routing Adjacency SID subTLVs (lengths are not validated). CVE-2024-31951 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2024-31951.html CVE-2024-31951 https://bugzilla.suse.com/1222528 SUSE Bug 1222528 In FRRouting (FRR) through 9.1, it is possible for the get_edge() function in ospf_te.c in the OSPF daemon to return a NULL pointer. In cases where calling functions do not handle the returned NULL value, the OSPF daemon crashes, leading to denial of service. CVE-2024-34088 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2024-34088.html CVE-2024-34088 https://bugzilla.suse.com/1223786 SUSE Bug 1223786 An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value. CVE-2024-44070 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP5:libmlag_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:frr-devel-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrr_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrcares0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrfpm_pb0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrospfapiclient0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrsnmp0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libfrrzmq0-8.5.6-150500.4.30.1 SUSE Linux Enterprise Module for Server Applications 15 SP6:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.5:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.5:libmlag_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-8.5.6-150500.4.30.1 openSUSE Leap 15.6:frr-devel-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrr_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrcares0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrfpm_pb0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrospfapiclient0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrsnmp0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libfrrzmq0-8.5.6-150500.4.30.1 openSUSE Leap 15.6:libmlag_pb0-8.5.6-150500.4.30.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20244090-1/ https://www.suse.com/security/cve/CVE-2024-44070.html CVE-2024-44070 https://bugzilla.suse.com/1229438 SUSE Bug 1229438