rpms/frr
7
0
Fork 0
Code Issues Pull Requests Releases Activity
31 Commits 10 Branches 68 Tags 512 KiB
c8s
Commit Graph

31 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
RHEL Packaging Agent
4acbe765c8 frr: fix CVE-2026-37457 off-by-one error in FlowSpec operator array bounds check 
Backport upstream commit 0e6882bc72c0278988a47b2f0f73b7a91099a25c to
fix an off-by-one error in FlowSpec operator array bounds checking in
bgpd/bgp_flowspec_util.c. The patch changes the comparison from
`loop > BGP_PBR_MATCH_VAL_MAX` to `loop >= BGP_PBR_MATCH_VAL_MAX`
and adds an early return in both bgp_flowspec_op_decode() and
bgp_flowspec_bitmask_decode() to prevent writing one element past
the end of the mval[] array when more than 5 chained operators are
present in a FlowSpec component.

CVE: CVE-2026-37457
Upstream patches:
 - 0e6882bc72.patch
Resolves: RHEL-174676

This commit was backported by Ymir, a Red Hat Enterprise Linux software maintenance AI agent.

Assisted-by: Ymir
 2026-05-21 12:07:49 +00:00
Michal Ruprich
af268a5469 Fixing fmf testing files 2026-05-21 13:38:29 +02:00
František Hrdina
a6024b87ba Update location of fmf plans 2025-08-11 10:37:08 +02:00
Michal Ruprich
5e3dc3e58f Resolves: RHEL-65250 - When using namespaces, integrated configs for frr fail to write 2025-04-04 12:55:25 +02:00
František Hrdina
fcfaa3f050 Update of fmf plans and gating for c8s 2024-10-07 10:03:40 +02:00
Michal Ruprich
45e41b61fd Resolves: RHEL-22303 - Zebra not fetching host routes 2024-02-07 15:51:43 +01:00
Michal Ruprich
64f48ec67f Resolves: RHEL-2216 - NULL pointer dereference 2024-02-07 09:52:39 +01:00
Michal Ruprich
2c64b7c6a1 Resolves: RHEL-4797 - missing length check in bgp_attr_psid_sub() can lead do DoS 2024-02-07 09:21:41 +01:00
Michal Ruprich
6f6ec0f6ce Resolves: RHEL-14824 - crafted BGP UPDATE message leading to a crash 2024-02-05 10:18:06 +01:00
Michal Ruprich
1a8a32e553 Resolves: RHEL-14821 - mishandled malformed data leading to a crash 2024-02-05 09:38:57 +01:00
Michal Ruprich
2dfcf2f374 Resolves: RHEL-6583 - Routes are not refreshed after changing the inbound route rules from deny to permit 2023-12-19 16:47:48 +01:00
Michal Ruprich
56f1a21263 Resolves: RHEL-15916 - Flowspec overflow in bgpd/bgp_flowspec.c 
Resolves: RHEL-15919 - Out of bounds read in bgpd/bgp_label.c
Resolves: RHEL-15869 - crash from specially crafted MP_UNREACH_NLRI-containing BGP UPDATE message
Resolves: RHEL-15868 - crash from malformed EOR-containing BGP UPDATE message
 2023-12-19 14:26:18 +01:00
Andreas Karis
1ec0bd103f Resolves: RHEL-12039 - crash in plist update 
Signed-off-by: Andreas Karis <ak.karis@gmail.com>
 2023-10-19 11:27:33 +02:00
Michal Ruprich
1c03760757 Fixing the testing plans 2023-10-17 10:09:42 +02:00
Michal Ruprich
bbe99e6e9f Resolves: RHEL-6617 - Incorrect handling of a error in parsing of an invalid section of a BGP update can de-peer a router 2023-10-13 09:08:32 +02:00
Michal Ruprich
5481c6a69a Resolves: RHEL-2263 - eBGP multihop peer flapping due to delta miscalculation of new configuration 2023-10-10 16:22:36 +02:00
Michal Ruprich
49a02a9374 Resolves: #2216911 - Adding missing sys_admin SELinux call 2023-08-23 13:40:51 +02:00
Michal Ruprich
b33a840a2c Related: #2216911 - Adding unconfined_t type to access namespaces 2023-08-23 09:59:15 +02:00
Michal Ruprich
01c7826b04 Related: #2226803 - Adding patch 2023-08-17 10:24:37 +02:00
Michal Ruprich
7e4d561307 Resolves: #2226803 - BFD crash in FRR running in MetalLB 2023-08-16 15:30:15 +02:00
Michal Ruprich
ac050bb89b Resolves: #2216911 - SELinux is preventing FRR-Zebra to access to network namespaces 2023-08-11 12:08:39 +02:00
Michal Ruprich
041fed8eaf Fixing uploaded sources in c8s 2023-04-28 14:51:03 +02:00
Troy Dawson
9b0a3d43de Bring gating.yaml over from Brew dist-git 
Signed-off-by: Troy Dawson <tdawson@redhat.com>
 2023-03-10 10:37:59 -08:00
James Antill
051a44eb00 Import rpm: c8s 2023-02-27 13:02:24 -05:00
CentOS Sources
e16c9b3188 Auto sync2gitlab import of frr-7.5.1-7.el8.src.rpm 2022-12-08 04:10:10 +00:00
CentOS Sources
7056564cdb Auto sync2gitlab import of frr-7.5.1-5.el8.src.rpm 2022-11-16 06:10:00 +00:00
CentOS Sources
7c6a496b21 Auto sync2gitlab import of frr-7.5.1-4.el8.src.rpm 2022-09-16 16:12:44 +00:00
CentOS Sources
9c14a8ca06 Auto sync2gitlab import of frr-7.5.1-3.el8.src.rpm 2022-08-27 12:17:48 +00:00
James Antill
8de6ccfd87 Auto sync2gitlab import of frr-7.5.1-1.el8.src.rpm 2022-06-06 20:43:33 -04:00
James Antill
15822b9dd7 Auto sync2gitlab import of frr-7.5-11.el8.src.rpm 2022-05-26 07:12:40 -04:00
James Antill
dcb7dfceca Initial c8s branch. 2022-05-26 07:12:30 -04:00