An integer underflow in FRRouting (FRR) stable/10.0 to stable/10.6 allows attackers to cause a Denial of Service (DoS) via supplying a crafted BGP UPDATE message.
2. frr: denial of service via crafted BGP UPDATE message
A flaw was found in FRRouting (FRR). An unauthenticated remote attacker can exploit an integer underflow vulnerability by supplying a specially crafted BGP (Border Gateway Protocol) UPDATE message. This issue can lead to a Denial of Service (DoS).
RHSA-2026:24347: Red Hat Enterprise Linux AppStream (v. 10)
RHSA-2026:24370: Red Hat Enterprise Linux AppStream (v. 9)
Configurations
Workarounds
Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.