From 1bdbe6ef03e18f99fb31e3d959d2c42eabcf1574 Mon Sep 17 00:00:00 2001 From: Martin Winter Date: Tue, 8 Jan 2019 00:29:22 -0800 Subject: [PATCH] FRRouting Release 6.0.2 This is a maintenance release for a security (Denial of Service) issue found with the expermimental BGP VNC Attribute (255). Other experiments using the same attribute may bring down BGP peers if they are malformed for the VNC parsing. (As required by RFC). The update disables the parsing of the VNC attribute by default to avoid this. Beside this change, this release is similar to 6.0.1 Major Changes since 6.0 (already in 6.0.1) - New Debian Package structure without backports - Fix Memory Leak on FreeBSD - Fix BGP unnumbered peer setup - Various fixes for label manager - Various other fixes Signed-off-by: Martin Winter --- configure.ac | 2 +- redhat/frr.spec.in | 6 +++++- 2 files changed, 6 insertions(+), 2 deletions(-) diff --git a/configure.ac b/configure.ac index 6faa3b6c45..72747550dd 100755 --- a/configure.ac +++ b/configure.ac @@ -7,7 +7,7 @@ ## AC_PREREQ(2.60) -AC_INIT(frr, 6.0.1, [https://github.com/frrouting/frr/issues]) +AC_INIT(frr, 6.0.2, [https://github.com/frrouting/frr/issues]) PACKAGE_URL="https://frrouting.org/" AC_SUBST(PACKAGE_URL) PACKAGE_FULLNAME="FRRouting" diff --git a/redhat/frr.spec.in b/redhat/frr.spec.in index f533f9f4a9..4e68365362 100644 --- a/redhat/frr.spec.in +++ b/redhat/frr.spec.in @@ -663,7 +663,11 @@ fi %changelog -* Sat Dec 29 2018 Martin Winter - %{version} +* Tue Jan 8 2019 Martin Winter - %{version} +- Security Issue (Denial of Service): Fix BGP Attribute 255 (experimental VNC) + handling + +* Sat Dec 29 2018 Martin Winter - 6.0.1 - Various fixes for label manager - Fix BGP unnumbered peer setup - Various other fixes -- 2.39.5