RLSA-2026:24370

Synopsis

Important: frr10 security update

Description

FRRouting is free software that manages TCP/IP based routing protocols. It takes a multi-server and multi-threaded approach to resolve the current complexity of the Internet. FRRouting supports BGP4, OSPFv2, OSPFv3, ISIS, RIP, RIPng, PIM, NHRP, PBR, EIGRP and BFD. FRRouting is a fork of Quagga.

Security Fix(es):

* frr: denial of service via crafted FlowSpec component (CVE-2026-37457)

* frr: denial of service via crafted BGP UPDATE message (CVE-2026-37459)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Affected products

Rocky Linux 9 aarch64 Rocky Linux 9 ppc64le Rocky Linux 9 s390x Rocky Linux 9 x86_64

Fixes

2464548 2466513

CVEs

CVE-2026-37457 CVE-2026-37459

Affected packages

Rocky Linux 9 aarch64 - AppStream

frr10-0:10.4.3-3.el9_8.aarch64.rpm frr10-0:10.4.3-3.el9_8.src.rpm frr10-debuginfo-0:10.4.3-3.el9_8.aarch64.rpm frr10-debugsource-0:10.4.3-3.el9_8.aarch64.rpm frr10-selinux-0:10.4.3-3.el9_8.noarch.rpm

Rocky Linux 9 ppc64le - AppStream

frr10-0:10.4.3-3.el9_8.ppc64le.rpm frr10-0:10.4.3-3.el9_8.src.rpm frr10-debuginfo-0:10.4.3-3.el9_8.ppc64le.rpm frr10-debugsource-0:10.4.3-3.el9_8.ppc64le.rpm frr10-selinux-0:10.4.3-3.el9_8.noarch.rpm

Rocky Linux 9 s390x - AppStream

frr10-0:10.4.3-3.el9_8.s390x.rpm frr10-0:10.4.3-3.el9_8.src.rpm frr10-debuginfo-0:10.4.3-3.el9_8.s390x.rpm frr10-debugsource-0:10.4.3-3.el9_8.s390x.rpm frr10-selinux-0:10.4.3-3.el9_8.noarch.rpm

Rocky Linux 9 x86_64 - AppStream

frr10-0:10.4.3-3.el9_8.src.rpm frr10-0:10.4.3-3.el9_8.x86_64.rpm frr10-debuginfo-0:10.4.3-3.el9_8.x86_64.rpm frr10-debugsource-0:10.4.3-3.el9_8.x86_64.rpm frr10-selinux-0:10.4.3-3.el9_8.noarch.rpm