Medium severity6.5NVD Advisory· Published May 3, 2023· Updated Jun 17, 2026
CVE-2022-43681
CVE-2022-43681
Description
An out-of-bounds read exists in the BGP daemon of FRRouting FRR through 8.4. When sending a malformed BGP OPEN message that ends with the option length octet (or the option length word, in case of an extended OPEN message), the FRR code reads of out of the bounds of the packet, throwing a SIGABRT signal and exiting. This results in a bgpd daemon restart, causing a Denial-of-Service condition.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- osv-coords2 versions
< 8.3.1-11.el9_3.alma.1+ 1 more
- (no CPE)range: < 8.3.1-11.el9_3.alma.1
- (no CPE)range: < 8.3.1-11.el9_3.alma.1
Patches
Vulnerability mechanics
References
3- forescout.comnvdThird Party Advisory
- lists.debian.org/debian-lts-announce/2023/09/msg00020.htmlnvdMailing ListThird Party Advisory
- www.debian.org/security/2023/dsa-5495nvdThird Party Advisory
News mentions
0No linked articles in our index yet.