dimstar_suse
764bf3b09b
- Update to frr-10.6.1 (https://frrouting.org/release/10.6.1/) providing several bug fixes. Already the previous update to frr-10.6.0 includes security fixes for the following Denial of Service (DoS) vulnerabilities: - ospfd: harden TE/SR TLV iteration against malformed lengths (bsc#1263859,CVE-2026-28532,gh#FRRouting/frr#21002) - bgpd: fix off-by-one error in FlowSpec operator array bounds check (bsc#1263863,CVE-2026-37457,gh#FRRouting/frr#21054) - bgpd: Validate MP_REACH_NLRI attribute against incorrect next-hop (bsc#1263974,CVE-2026-37458,gh#FRRouting/frr#21075) - bgpd: Check if the NHC length is enough to fill TLV value + TLV header (bsc#1264051,CVE-2026-37459,gh#FRRouting/frr#21074) OBS-URL: https://build.opensuse.org/request/show/1351832 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/frr?expand=0&rev=46