What the vulnerability does

01Description

Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to wrong checks on the subtlv length in the functions, parse_hello_subtlv, parse_ihu_subtlv, and parse_update_subtlv in babeld/message.c.

Key dates

02Disclosure timeline

March 3, 2022 CVE published
November 4, 2025 Record updated