NLnet Labs Routinator prior to 0.10.0 produces invalid RTR payload if an RPKI CA uses too large values in the max-length parameter in a ROA. This will lead to RTR clients such as routers to reject the RPKI data set, effectively disabling Route Origin Validation.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: NLnet Labs

Published: 2021-09-21T13:23:17.982390Z

Updated: 2024-09-16T20:27:40.850Z

Reserved: 2021-09-20T00:00:00

Link: CVE-2021-41531

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2021-09-21T14:15:07.663

Modified: 2021-10-05T15:43:16.447

Link: CVE-2021-41531

cve-icon Redhat

No data.