All fixed (thanks Donald) CVE-2022-40302 and CVE-2022-40318: https://github.com/FRRouting/frr/pull/12043 CVE-2022-43681: https://github.com/FRRouting/frr/pull/12247 Cheers, Jeff
On May 3, 2023, at 2:52 AM, Hank Nussbacher <hank@efes.iucc.ac.il> wrote:
On 02/05/2023 17:56, Warren Kumari wrote:
For those that like FRR: https://thehackernews.com/2023/05/researchers-uncover-new-bgp-flaws-in.html
Regards, Hank
+lots.
I've used a number of Linux routing thingies (BIRD, Quagga, VyOS/Ubiquiti, OpenBGPd, ExBGP), and FRR is (for me at least) by far the friendliest. It's trivial to spin this up on a cloud VM and start announcing a prefix.
For doing something like Anycast though (where you are mostly just announcing a route on demand), ExaBGP is great.
W
On Mon, May 01, 2023 at 2:03 PM, Jean Franco <jfranco@maila.inf.br> wrote: