Mpguerra

**Name of the Vulnerable Software and Affected Versions** ZEBRA versions prior to 4.4.0 **Description** A composite denial-of-service issue in the block discovery pipeline allows an unauthenticated remote attacker to permanently stop all new block discovery on a targeted node. The attack leverages three independent weaknesses within the gossip, syncer, and download subsystems via a single TCP connection to create a monotonically growing block deficit that does not self-heal. **Recommendations** Update to version 4.4.0.