CVE-2007-4826

bgpd in Quagga before 0.99.9 allows explicitly configured BGP peers to cause a denial of service (crash) via a malformed (1) OPEN message or (2) a COMMUNITY attribute, which triggers a NULL pointer dereference. NOTE: vector 2 only exists when debugging is enabled.

Date published : 2007-09-12

http://www.securityfocus.com/bid/25634

http://quagga.net/news2.php?y=2007&m=9&d=7#id1189190760