Описание
ELSA-2016-1086: libndp security update (MODERATE)
[1.2-6]
- libndp: fix hop limit validation [CVE-2016-3698]
[1.2-5]
- libndp: validate the IPv6 hop limit [CVE-2016-3698]
- libndb: reject redirect and router advertisements from non-link-local [CVE-2016-3698]
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
libndp
1.2-6.el7_2
libndp-devel
1.2-6.el7_2
Связанные CVE
Связанные уязвимости
libndp before 1.6, as used in NetworkManager, does not properly validate the origin of Neighbor Discovery Protocol (NDP) messages, which allows remote attackers to conduct man-in-the-middle attacks or cause a denial of service (network connectivity disruption) by advertising a node as a router from a non-local network.
libndp before 1.6, as used in NetworkManager, does not properly validate the origin of Neighbor Discovery Protocol (NDP) messages, which allows remote attackers to conduct man-in-the-middle attacks or cause a denial of service (network connectivity disruption) by advertising a node as a router from a non-local network.
libndp before 1.6, as used in NetworkManager, does not properly validate the origin of Neighbor Discovery Protocol (NDP) messages, which allows remote attackers to conduct man-in-the-middle attacks or cause a denial of service (network connectivity disruption) by advertising a node as a router from a non-local network.
libndp before 1.6, as used in NetworkManager, does not properly valida ...
libndp before 1.6, as used in NetworkManager, does not properly validate the origin of Neighbor Discovery Protocol (NDP) messages, which allows remote attackers to conduct man-in-the-middle attacks or cause a denial of service (network connectivity disruption) by advertising a node as a router from a non-local network.