-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 02 Jun 2026 15:30:27 +0800
Source: frr
Architecture: source
Version: 10.3-3+deb13u1
Distribution: trixie-security
Urgency: high
Maintainer: David Lamparter <equinox-debian@diac24.net>
Changed-By: Aron Xu <aron@debian.org>
Changes:
 frr (10.3-3+deb13u1) trixie-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Backport upstream fixes for several BGP/OSPF parsing vulnerabilities:
     - CVE-2026-37457: off-by-one out-of-bounds write in the BGP FlowSpec
       operator decoder (bgp_flowspec_op_decode).
     - CVE-2026-28532: out-of-bounds read in OSPF TE/SR Opaque LSA TLV parsing
       caused by a truncated uint16_t length accumulator.
     - CVE-2026-5107: missing length validation when parsing EVPN Type-2/3/4
       and ENCAP/VNC NLRIs.
     - CVE-2026-37458: missing martian next-hop validation in MP_REACH_NLRI.
     - CVE-2025-61099, CVE-2025-61100, CVE-2025-61101, CVE-2025-61102,
       CVE-2025-61103, CVE-2025-61104, CVE-2025-61105, CVE-2025-61106,
       CVE-2025-61107: NULL pointer dereference in ospfd when dumping Opaque
       LSAs while OSPF packet debugging is enabled.
Checksums-Sha1:
 445e4856fbb8d143b44c53f2ac59cb3266f4686d 2335 frr_10.3-3+deb13u1.dsc
 f9191745c603f5d44eb891420c1dcfc8de447519 8510764 frr_10.3.orig.tar.xz
 cf00519f1c8dd0714923575e0641f3d3de9df3ee 38204 frr_10.3-3+deb13u1.debian.tar.xz
 69be4dff1659e361e3a75d5e4b73f1eee32495a1 8435 frr_10.3-3+deb13u1_source.buildinfo
Checksums-Sha256:
 127ea97c1f89d0dd00dc5694701cb51dcfe6ac9560bac751c9f903efe16a4601 2335 frr_10.3-3+deb13u1.dsc
 78b3f37de85af1e2cab87c3f831f0db66669e32540194ef55759f49ebdab0c10 8510764 frr_10.3.orig.tar.xz
 abe2606deaa740eae26a5501e6f6907f4f26f10321cc8c91e0d757aae69f5068 38204 frr_10.3-3+deb13u1.debian.tar.xz
 26627887abdcfce80f392ece53c67f46e62cbed9f30155e123acff349d216e83 8435 frr_10.3-3+deb13u1_source.buildinfo
Files:
 e4ad05026dcd924dfab3d82f9929ed69 2335 net optional frr_10.3-3+deb13u1.dsc
 127cb73afff5615ceb774ba621150d1e 8510764 net optional frr_10.3.orig.tar.xz
 7fd41134727c594d6fc8aa4320be0de0 38204 net optional frr_10.3-3+deb13u1.debian.tar.xz
 9ee4290c93c5c85c393e28ec528889b1 8435 net optional frr_10.3-3+deb13u1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCgAdFiEExq6D0hxncEPaPayX+GQ1dHE8m64FAmog5o4ACgkQ+GQ1dHE8
m67gTQf+In2S/XADgXUkm+qzGK+RLMD1m2cdYhaCMetD75Sb5RpztGIkN4iQ5hiy
oadhVCbBTMUIg1Hs5Gu4OHiafqtqL+6g8x6PQTm+bfj3pW1Uq7ZW1loTR3XmKC4o
JVFpGWpWPu0oALmUm70rpPH55zDXb0NzVNHq2rLI4gJcpxC13vCjCgA8RHlRrsJX
oURmFslHcQS3Tv6pETp8wAHk6RS1Y3oJtIjTQaOfMSd5Jxwo3sZux0UeBZmFX8Gs
rEnG12wpdHRfveetpET8KTCvq1LTUnRyeDwlpo7k018BxSRJvCBaQjUFIIviM7sw
IPRbFTnlZeFJpe8GhyjnYc3u2qELRw==
=p3Kb
-----END PGP SIGNATURE-----