Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2024-6501

Опубликовано: 09 июл. 2024
Источник: debian
EPSS Низкий

Описание

A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled and an interface eth1 configured with LLDP enabled, a malicious user could inject a malformed LLDP packet. NetworkManager would crash, leading to a denial of service.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
network-managerfixed1.49.90-2package
network-managerfixed1.42.4-1+deb12u1bookwormpackage
network-managernot-affectedbullseyepackage

Примечания

  • https://bugzilla.redhat.com/show_bug.cgi?id=2295734

  • https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/issues/1550

  • https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/merge_requests/2007

  • Introduced by: https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/commit/630de288d2e4e01d9ed89218722c0f52b2173128 (1.41.4-dev)

  • Fixed by: https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/commit/79c1f8c93ad620d02f61ffa49dd3df04fca48069 (1.49.5-dev)

EPSS

Процентиль: 45%
0.00221
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2024-6501

CVSS3: 3.1
ubuntu
12 месяцев назад

A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled and an interface eth1 configured with LLDP enabled, a malicious user could inject a malformed LLDP packet. NetworkManager would crash, leading to a denial of service.

redhat логотип

CVE-2024-6501

CVSS3: 3.1
redhat
12 месяцев назад

A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled and an interface eth1 configured with LLDP enabled, a malicious user could inject a malformed LLDP packet. NetworkManager would crash, leading to a denial of service.

nvd логотип

CVE-2024-6501

CVSS3: 3.1
nvd
12 месяцев назад

A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled and an interface eth1 configured with LLDP enabled, a malicious user could inject a malformed LLDP packet. NetworkManager would crash, leading to a denial of service.

redos логотип

ROS-20250109-01

CVSS3: 3.1
redos
6 месяцев назад

Уязвимость NetworkManager

github логотип

GHSA-gwgm-rhr4-mf4h

CVSS3: 3.1
github
12 месяцев назад

A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled and an interface eth1 configured with LLDP enabled, a malicious user could inject a malformed LLDP packet. NetworkManager would crash, leading to a denial of service.

EPSS

Процентиль: 45%
0.00221
Низкий