VYPR
High severity7.5NVD Advisory· Published Feb 19, 2018· Updated Jun 17, 2026

CVE-2018-5379

CVE-2018-5379

Description

The Quagga BGP daemon (bgpd) prior to version 1.2.3 can double-free memory when processing certain forms of UPDATE message, containing cluster-list and/or unknown attributes. A successful attack could cause a denial of service or potentially allow an attacker to execute arbitrary code.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

23

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.