Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2025:0288

Опубликовано: 07 мая 2025
Источник: rocky
Оценка: Moderate

Описание

Moderate: Bug fix of NetworkManager

Security and Bug Fix(es):

  • NetworkManager: DHCP routing options can manipulate interface-based VPN traffic (CVE-2024-3661)

  • Route to VPN server not stored in routing table that is specified by ipv4.route-table (JIRA:Rocky Linux-73051)

  • VPN connections do not support ipv4.routing-rules settings (JIRA:Rocky Linux-73052)

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
NetworkManagerx86_6418.el8_10NetworkManager-1.40.16-18.el8_10.x86_64.rpm
NetworkManager-adslx86_6418.el8_10NetworkManager-adsl-1.40.16-18.el8_10.x86_64.rpm
NetworkManager-bluetoothx86_6418.el8_10NetworkManager-bluetooth-1.40.16-18.el8_10.x86_64.rpm
NetworkManager-config-connectivity-redhatnoarch18.el8_10NetworkManager-config-connectivity-redhat-1.40.16-18.el8_10.noarch.rpm
NetworkManager-config-servernoarch18.el8_10NetworkManager-config-server-1.40.16-18.el8_10.noarch.rpm
NetworkManager-dispatcher-routing-rulesnoarch18.el8_10NetworkManager-dispatcher-routing-rules-1.40.16-18.el8_10.noarch.rpm
NetworkManager-initscripts-updownnoarch18.el8_10NetworkManager-initscripts-updown-1.40.16-18.el8_10.noarch.rpm
NetworkManager-libnmx86_6418.el8_10NetworkManager-libnm-1.40.16-18.el8_10.x86_64.rpm
NetworkManager-ovsx86_6418.el8_10NetworkManager-ovs-1.40.16-18.el8_10.x86_64.rpm
NetworkManager-pppx86_6418.el8_10NetworkManager-ppp-1.40.16-18.el8_10.x86_64.rpm

Показывать по

Связанные CVE

CVE-2024-3661

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2024-3661

CVSS3: 7.6
ubuntu
около 1 года назад

DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify network traffic that was expected to be protected by the VPN.

redhat логотип

CVE-2024-3661

CVSS3: 7.6
redhat
около 1 года назад

DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify network traffic that was expected to be protected by the VPN.

nvd логотип

CVE-2024-3661

CVSS3: 7.6
nvd
около 1 года назад

DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify network traffic that was expected to be protected by the VPN.

github логотип

GHSA-jcv7-6v4q-4m7x

CVSS3: 8.8
github
около 1 года назад

By design, the DHCP protocol does not authenticate messages, including for example the classless static route option (121). An attacker with the ability to send DHCP messages can manipulate routes to redirect VPN traffic, allowing the attacker to read, disrupt, or possibly modify network traffic that was expected to be protected by the VPN. Many, if not most VPN systems based on IP routing are susceptible to such attacks.

oracle-oval логотип

ELSA-2025-0377

oracle-oval
5 месяцев назад

ELSA-2025-0377: Security and bug fixes for NetworkManager (MODERATE)