CVE-2026-37459

Daily digests

An integer underflow in FRRouting lets a remote attacker crash the BGP daemon by sending a crafted BGP UPDATE message. If your routers peer with untrusted or semi-trusted BGP neighbors, an attacker can take down your routing plane. This affects FRR stable/10.0 through stable/10.6.

• Daily Digest · May 19, 2026

  Apache Thrift 9.4 RCE + 4 Linux/Go/curl fixes