CVE-2023-38406: ffr: Flowspec overflow in bgpd/bgp_flowspec.c

Severity: Critical

CVSS Score: 9.8

bgpd/bgp_flowspec.c in FRRouting (FRR) before 8.4.3 mishandles an nlri length of zero, aka a "flowspec overflow."