1 files changed, 26 insertions, 0 deletions

diff --git a/debian/changelog b/debian/changelog
index 45fd9705..4146eece 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,29 @@
+frr (8.4.6-0~deb12u1) bookworm-security; urgency=high
+
+  * Merging upstream version 8.4.5:
+    - fixes buffer overflow and daemon crash in ospf_te_parse_ri for OSPF LSA
+      packets during an attempt to read Segment Routing subTLVs (their size is
+      not validated) [CVE-2024-31950].
+    - fixes buffer overflow and daemon crash in ospf_te_parse_ext_link for OSPF
+      LSA packets during an attempt to read Segment Routing Adjacency SID
+      subTLVs (lengths are not validated) [CVE-2024-31951].
+    - fixes denial of service via a crafted BGP update with a corrupted
+      attribute 23 (Tunnel Encapsulation) [CVE-2023-38802].
+    - fixes crash due to mishandling of malformed MP_REACH_NLRI data
+      [CVE-2023-46752].
+    - fixes crash for a crafted BGP UPDATE message without mandatory attributes,
+      e.g., one with only an unknown transit attribute [CVE-2023-46753].
+    - fixes crash when a malformed BGP UPDATE message with an EOR is processed,
+      because the presence of EOR does not lead to a treat-as-withdraw outcome.
+      [CVE-2023-47235].
+    - fixes crash in bgpd daemon when using a malformed Prefix SID attribute in
+      a BGP UPDATE packet [CVE-2024-31948].
+  * Merging upstream version 8.4.6:
+    - fixes bgp_attr_encap in bgpd/bgp_attr.c to check the actual remaining
+      stream length before taking the TLV value [CVE-2024-44070]
+
+ -- Daniel Baumann <daniel@debian.org>  Thu, 26 Dec 2024 10:12:08 +0100
+
 frr (8.4.4-1.1~deb12u1) bookworm-security; urgency=high
 
   * Non-maintainer upload by the Security Team.