Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[FRR] Adding patches for CVE-2023-41358 CVE-2023-41909 CVE-2023-38802 #45

Closed
wants to merge 1 commit into from

Conversation

DavidZagury
Copy link
Owner

@DavidZagury DavidZagury commented Sep 20, 2023

Why I did it

To address 3CVEs from FRR CVE-2023-41358, CVE-2023-41909 & CVE-2023-38802.

Patch FRR commit CVE fixed
0032-bgpd-Do-not-process-NLRIs-if-the-attribute-length-is-zero.patch FRRouting/frr@f291f1e CVE-2023-41358
0033-bgpd-Limit-flowspec-to-no-attribute-means-a-implicit-withdrawal.patch FRRouting/frr@cc1a551 CVE-2023-41909
0034-bgpd-Use-treat-as-withdraw-for-tunnel-encapsulation-attribute.patch FRRouting/frr@8a4a88c CVE-2023-38802
Work item tracking
  • Microsoft ADO (number only):

How I did it

Porting fixes as patches from FRR.

How to verify it

Which release branch to backport (provide reason below if selected)

  • 201811
  • 201911
  • 202006
  • 202012
  • 202106
  • 202111
  • 202205
  • 202211
  • 202305

Tested branch (Please provide the tested image version)

Description for the changelog

Link to config_db schema for YANG module changes

A picture of a cute animal (not mandatory but encouraged)

@DavidZagury DavidZagury force-pushed the 202205_frr-cve-fixes-0923 branch from f372e56 to 29cff73 Compare September 21, 2023 07:56
@DavidZagury DavidZagury closed this Oct 2, 2023
DavidZagury pushed a commit that referenced this pull request Dec 27, 2023
…ly (sonic-net#17572)

#### Why I did it
src/dhcprelay
```
* 5ae186f - (HEAD -> master, origin/master, origin/HEAD) [counter] Clear counter table when init (#45) (10 hours ago) [Yaqiang Zhu]
```
#### How I did it
#### How to verify it
#### Description for the changelog
DavidZagury pushed a commit that referenced this pull request Jan 15, 2024
5ae186f Yaqiang Zhu Tue Dec 19 12:05:15 2023 -0500 [counter] Clear counter table when init (#45)
DavidZagury pushed a commit that referenced this pull request Feb 7, 2024
sonic-dhcp-relay
5ae186f Yaqiang Zhu Tue Dec 19 12:05:15 2023 -0500 [counter] Clear counter table when init (#45)
40c6877 Jing Zhang Fri Nov 10 12:41:23 2023 -0800 [CodeQL] fix unmet dependency for build-swss-common (#44)

sonic-dhcpmon
7c55e50 StormLiangMS Thu Sep 14 09:57:06 2023 +0800 Merge pull request #13 from jcaiMR/dev/jcai_master_interface_counter
085a087 jcaiMR Mon Sep 11 09:17:03 2023 +0000 refine counting logic
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants