Gnoppix Security
Critical Bird3 Flaw Patched
Gnoppix Security has issued GSA-6379-1 to address a security vulnerability in the bird3 routing suite. The flaw could allow attackers to cause a denial of service.
What Happened
An issue in the resource management of bird3 permits remote exploitation. The bug exists in the Babel protocol handling, specifically a memory leak.
Who Is Affected
All users running bird3 on Gnoppix 23/25 and Gnoppix 25 systems must update immediately.
Mitigation Steps
Update your bird3 package to the patched version via the standard package manager. No other workarounds are available.
Remote attackers can crash the service by exploiting the memory leak.
Background
The vulnerability was discovered during routine code auditing. The Babel protocol implementation failed to properly release allocated memory under specific network conditions. This leads to resource exhaustion over time. - Please update your systems.