Candidate: CVE-2021-43114
PublicDate: 2021-11-09 13:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43114
 https://github.com/NICMx/FORT-validator/releases/tag/1.5.2
Description:
 FORT Validator versions prior to 1.5.2 will crash if an RPKI CA publishes
 an X.509 EE certificate. This will lead to RTR clients such as BGP routers
 to lose access to the RPKI VRP data set, effectively disabling Route Origin
 Validation.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [7.5 HIGH]


Patches_fort-validator:
upstream_fort-validator: released (1.5.2-1)
trusty_fort-validator: ignored (out of standard support)
xenial_fort-validator: ignored (out of standard support)
focal_fort-validator: needs-triage
hirsute_fort-validator: ignored (reached end-of-life)
impish_fort-validator: needs-triage
jammy_fort-validator: not-affected (1.5.2-1)
devel_fort-validator: not-affected (1.5.2-1)