Описание
lldpd before 0.8.0 allows remote attackers to cause a denial of service (assertion failure and daemon crash) via a malformed packet.
A flaw was found in the lldpd package that allows remote attackers to cause a denial of service (assertion failure and daemon crash) via a malformed packet. The highest threat from this vulnerability is to system availability.
Отчет
The lldpd package as shipped with Red Hat Enterprise Linux 8 is not affected by this flaw because it has already received the patch. The flaw affects versions before 0.8.0 and the shipped version is 1.0.1+
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Fast Datapath for RHEL 7 | openvswitch | Not affected | ||
| Fast Datapath for RHEL 7 | openvswitch2.10 | Not affected | ||
| Fast Datapath for RHEL 7 | openvswitch2.11 | Not affected | ||
| Fast Datapath for RHEL 7 | openvswitch2.12 | Not affected | ||
| Fast Datapath for RHEL 7 | openvswitch2.13 | Not affected | ||
| Fast Datapath for RHEL 8 | openvswitch2.11 | Not affected | ||
| Fast Datapath for RHEL 8 | openvswitch2.12 | Not affected | ||
| Fast Datapath for RHEL 8 | openvswitch2.13 | Not affected | ||
| Red Hat Enterprise Linux 8 | lldpd | Not affected | ||
| Red Hat OpenShift Container Platform 4 | openvswitch2.13 | Not affected |
Показывать по
Дополнительная информация
Статус:
EPSS
7.5 High
CVSS3
Связанные уязвимости
lldpd before 0.8.0 allows remote attackers to cause a denial of service (assertion failure and daemon crash) via a malformed packet.
lldpd before 0.8.0 allows remote attackers to cause a denial of service (assertion failure and daemon crash) via a malformed packet.
lldpd before 0.8.0 allows remote attackers to cause a denial of servic ...
lldpd before 0.8.0 allows remote attackers to cause a denial of service (assertion failure and daemon crash) via a malformed packet.
EPSS
7.5 High
CVSS3