Greyface-On

**Name of the Vulnerable Software and Affected Versions** OpenBGPD versions prior to 8.1 **Description** The issue arises from incorrect handling of BGP update data, specifically the length of path attributes, which can be set by a potentially distant remote actor. This may cause the system to incorrectly reset a session. **Recommendations** For OpenBGPD versions prior to 8.1, update to OpenBSD 7.3 errata 006 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Nokia Service Router Operating System (SR OS) version 22.10 SR Linux **Description** The issue arises when error-handling update-fault-tolerance is not enabled, leading to the mishandling of BGP path attributes. **Recommendations** For Nokia Service Router Operating System (SR OS) version 22.10, enable error-handling update-fault-tolerance to resolve the issue. For SR Linux, enable error-handling update-fault-tolerance to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** FRRouting FRR versions 7.5.1 through 9.0 Pica8 PICOS version 4.3.3.2 PAN-OS (affected versions not specified) **Description** The issue is related to errors in processing input data, allowing a remote attacker to cause a denial of service by sending specially crafted BGP update data. This can be achieved via a crafted BGP update with a corrupted attribute 23 (Tunnel Encapsulation). The denial-of-service impact on the network depends on the network's architecture and fault-tolerant design. **Recommendations** For FRRouting FRR versions 7.5.1 through 9.0, consider disabling the BGP routing feature until a patch is available. For Pica8 PICOS version 4.3.3.2, restrict access to the BGP update feature to minimize the risk of exploitation. For PAN-OS, at the moment, there is no information about a newer version that contains a fix for this vulnerability.