Цены Enterprise

CVE-2025-43971

8.6HIGH

An issue was discovered in GoBGP before 3.35.0. pkg/packet/bgp/bgp.go allows attackers to cause a panic via a zero value for softwareVersionLen.

Опубликовано: 4/21/2025Обновлено: 5/8/2025

Посмотреть на NVD Посмотреть на MITRE

Описание

An issue was discovered in GoBGP before 3.35.0. pkg/packet/bgp/bgp.go allows attackers to cause a panic via a zero value for softwareVersionLen.

ИИ-АнализНа базе ИИ

Затронутые продукты

osrggobgp

Ссылки

https://github.com/osrg/gobgp/commit/08a001e06d90e8bcc190084c66992f46f62c0986
Patch
https://github.com/osrg/gobgp/compare/v3.34.0...v3.35.0
PatchRelease Notes