CNNVD-202510-3803 Information

CNNVD ID

CNNVD-202510-3803

Related CVE

CVE-2025-61107

• CNNVD Published: 2025-10-28

Description (Chinese)

FRRouting是FRRouting开源的一种在类 Unix 平台上运行的网络路由软件套件。 FRRouting 4.0版本至10.4.1版本存在安全漏洞，该漏洞源于ospf_ext.c中的show_vty_ext_pref_pref_sid函数存在空指针取消引用，可能导致拒绝服务攻击。

Description (English)

FRRouting is a network router package run by FRRRouting open source on the Onex platform. The FRRouting Versions 4.0 to 10.4.1 have a security loophole, which originates in the show vty ext pref pref sid function of ospf ext.c, where there is an empty pointer to cancel the reference, which may lead to a denial of service attack.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

FRRouting

Published

2025-10-28

Last Modified

2026-02-24

References

https://github.com/FRRouting/frr/issues/19471 https://github.com/FRRouting/frr/pull/19480 https://github.com/FRRouting/frr/pull/19480/commits/fdd957408605d4a1766225630aafc7e6b7c3daf3 https://github.com/s1awwhy/BugList/blob/main/CVE-2025-61107.md