From 9bd1746ee41a864a2bd6c9679e6cfa3cc456e8b1 Mon Sep 17 00:00:00 2001
From: Peter Korsgaard <peter@korsgaard.com>
Date: Fri, 6 Dec 2024 12:44:31 +0100
Subject: [PATCH] package/frr: security bump to version 8.5.6

8.5.5 fixes the following security issues:

- CVE-2024-31948: bgpd: Fix error handling when receiving BGP Prefix SID
  attribute
  https://github.com/FRRouting/frr/pull/15628/commits/ba6a8f1a31e1a88df2de69ea46068e8bd9b97138

- CVE-2024-31950: ospfd: Solved crash in RI parsing with OSPF TE
  https://github.com/FRRouting/frr/pull/15674/commits/f69d1313b19047d3d83fc2b36a518355b861dfc4

- CVE-2024-31951: ospfd: Correct Opaque LSA Extended parser
  https://github.com/FRRouting/frr/pull/15674/commits/5557a289acdaeec8cc63ffc97b5c2abf6dee7b3a

8.5.6 fixes the following security issues:

- CVE-2024-44070: bgpd: Check the actual remaining stream length before taking TLV value
  https://github.com/FRRouting/frr/pull/16497/commits/0998b38e4d61179441f90dd7e7fd6a3a8b7bd8c5

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
---
 package/frr/frr.hash | 2 +-
 package/frr/frr.mk   | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/package/frr/frr.hash b/package/frr/frr.hash
index 4a61084bae..86575dae8c 100644
--- a/package/frr/frr.hash
+++ b/package/frr/frr.hash
@@ -1,3 +1,3 @@
 # Locally calculated
-sha256  7ae9d8bafc65bb5d0f21061ac61dbc6cf93b2b05a5dae9e5eec72ed42388551e  frr-8.5.4.tar.gz
+sha256  5f3a32e66efdf2628548165d10327688847443c342788b31c4ea98368cfacbf8  frr-8.5.6.tar.gz
 sha256  8177f97513213526df2cf6184d8ff986c675afb514d4e68a404010521b880643  COPYING
diff --git a/package/frr/frr.mk b/package/frr/frr.mk
index a4b4bccaf9..c794d91a4e 100644
--- a/package/frr/frr.mk
+++ b/package/frr/frr.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-FRR_VERSION = 8.5.4
+FRR_VERSION = 8.5.6
 FRR_SITE = $(call github,FRRouting,frr,frr-$(FRR_VERSION))
 FRR_LICENSE = GPL-2.0
 FRR_LICENSE_FILES = COPYING