Multiple BGP implementations are vulnerable to improperly formatted BGP updates
Posted: Mon Feb 03, 2025 11:45 am
Multiple BGP implementations have been identified as vulnerable to specially crafted Path Attributes of a BGP UPDATE. Instead of ignoring invalid updates they reset the underlying TCP connection for the BGP session and de-peer the router.
https://www.kb.cert.org/vuls/id/347067
https://www.kb.cert.org/vuls/id/347067