Skip to main content

Mondoo

Vulnerability Management
Technology
Services

Solutions

Financial Services
Manufacturing
Healthcare

Resources

Blog
Vulnerability Database
Documentation
GitHub

Company

About
Careers
Partners
Contact

Legal

Privacy
Terms
Imprint

© 2026 Mondoo, Inc.

Log in Get Assessment

Vulnerability IntelligenceSUSE-SU-2026:1063-1

SUSE-SU-2026:1063-1

UNKNOWN

Security update for frr

Published Mar 26, 2026

Modified 3 weeks ago

Fix available

Details

This update for frr fixes the following issues:

Security issues:

CVE-2025-61099: NULL Pointer Dereference in FRRouting (bsc#1252838).
CVE-2025-61100: NULL Pointer Dereference in FRRouting (bsc#1252829).
CVE-2025-61101: NULL Pointer Dereference in FRRouting (bsc#1252833).
CVE-2025-61102: NULL Pointer Dereference in FRRouting (bsc#1252835).
CVE-2025-61103: NULL pointer dereference in show_vty_ext_link_lan_adj_sid() in ospf_ext.c (bsc#1252810).
CVE-2025-61104: NULL pointer dereference in show_vty_unknown_tlv() in ospf_ext.c (bsc#1252811).
CVE-2025-61105: NULL pointer dereference in show_vty_link_info() in ospf_ext.c (bsc#1252761).
CVE-2025-61106: NULL pointer dereference in show_vty_ext_pref_pref_sid() in ospf_ext.c (bsc#1252812).

Non-security issues:

Fix /var/run leftovers in logrotate config file, create /var/log and /var/lib via tmpfiles.d (jsc#PED-14796).

Affected Packages

frr

SUSE Linux Enterprise Module for Server Applications 15 SP7openSUSE Leap 15.6

Fixed in:

8.5.6-150500.4.36.1

libmlag_pb0

SUSE Linux Enterprise Module for Server Applications 15 SP7openSUSE Leap 15.6

Fixed in:

8.5.6-150500.4.36.1

frr-devel

openSUSE Leap 15.6

Fixed in:

8.5.6-150500.4.36.1

libfrr0

openSUSE Leap 15.6

Fixed in:

8.5.6-150500.4.36.1

libfrr_pb0

openSUSE Leap 15.6

Fixed in:

8.5.6-150500.4.36.1

libfrrcares0

openSUSE Leap 15.6

Fixed in:

8.5.6-150500.4.36.1

libfrrfpm_pb0

openSUSE Leap 15.6

Fixed in:

8.5.6-150500.4.36.1

libfrrospfapiclient0

openSUSE Leap 15.6

Fixed in:

8.5.6-150500.4.36.1

libfrrsnmp0

openSUSE Leap 15.6

Fixed in:

8.5.6-150500.4.36.1

libfrrzmq0

openSUSE Leap 15.6

Fixed in:

8.5.6-150500.4.36.1

References

https://bugzilla.suse.com/1252761

https://bugzilla.suse.com/1252810

https://bugzilla.suse.com/1252811

https://bugzilla.suse.com/1252812

https://bugzilla.suse.com/1252813

https://bugzilla.suse.com/1252829

https://bugzilla.suse.com/1252833

https://bugzilla.suse.com/1252835

https://bugzilla.suse.com/1252838

https://www.suse.com/security/cve/CVE-2025-61099

https://www.suse.com/security/cve/CVE-2025-61100

https://www.suse.com/security/cve/CVE-2025-61101

https://www.suse.com/security/cve/CVE-2025-61102

https://www.suse.com/security/cve/CVE-2025-61103

https://www.suse.com/security/cve/CVE-2025-61104

https://www.suse.com/security/cve/CVE-2025-61105

https://www.suse.com/security/cve/CVE-2025-61106

https://www.suse.com/security/cve/CVE-2025-61107

https://www.suse.com/support/update/announcement/2026/suse-su-20261063-1/

Upstream

CVE-2025-61099 CVE-2025-61100 CVE-2025-61101 CVE-2025-61102 CVE-2025-61103 CVE-2025-61104 CVE-2025-61105 CVE-2025-61106 CVE-2025-61107

Related

CVE-2025-61099 CVE-2025-61100 CVE-2025-61101 CVE-2025-61102 CVE-2025-61103 CVE-2025-61104 CVE-2025-61105 CVE-2025-61106 CVE-2025-61107

Ecosystems

SUSE Linux Enterprise Module for Server Applications 15 SP7 openSUSE Leap 15.6

Timeline

PublishedMar 26, 2026

ModifiedMar 26, 2026

SUSE-SU-2026:1063-1 | Mondoo Vulnerability Intelligence