Описание
ELSA-2024-9158: lldpd security update (MODERATE)
[1.0.18-3]
- Add lldpd-devel package [RHEL-22127]
[1.0.18-2]
- Remove networkd gating test [RHEL-25990]
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
lldpd
1.0.18-4.el9
lldpd-devel
1.0.18-4.el9
Oracle Linux x86_64
lldpd
1.0.18-4.el9
lldpd-devel
1.0.18-4.el9
Связанные CVE
Связанные уязвимости
An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU packet with specific CDP_TLV_ADDRESSES TLVs, a malicious actor can remotely force the lldpd daemon to perform an out-of-bounds read on heap memory. This occurs in cdp_decode in daemon/protocols/cdp.c.
An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU packet with specific CDP_TLV_ADDRESSES TLVs, a malicious actor can remotely force the lldpd daemon to perform an out-of-bounds read on heap memory. This occurs in cdp_decode in daemon/protocols/cdp.c.
An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU packet with specific CDP_TLV_ADDRESSES TLVs, a malicious actor can remotely force the lldpd daemon to perform an out-of-bounds read on heap memory. This occurs in cdp_decode in daemon/protocols/cdp.c.
An issue was discovered in lldpd before 1.0.17. By crafting a CDP PDU ...