SA-2023-094 - "Grave" - BGP attribute malformation... - Extreme Networks

Summary

Extreme Networks considers this as an RFC compliance check as this scenario is well described within the RFCs. Extreme generally implements RFC 4271 and not RFC 7606. Per RFC 4271, tearing down a BGP session is the required response to a malformed attribute. In some cases, this is the desired action, depending on the BGP operator's decision and the defensive posture they wish to maintain. This concept is long accepted and well understood, as RFC 7606 introduces alternatives to tearing down BGP sessions when presented with malformed attributes. How a BGP operator wants their network to respond is based on RFC requirements.

Repair Recommendations

None

Please see the full Security Advisory article here for more details and updated information.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Extreme Networks

SA-2023-094 - "Grave" - BGP attribute malformation handling

SA-2023-047 - Framing Frames: Bypassing Wi-Fi Encryption by Manipulating Transmit Queues (Leaking fr

SA-2023-107 - libcurl cookie injection with none file (CVE-2023-38546)

SA-2023-106 - SOCKS5 heap buffer overflow (CVE-2023-38545)