libndp-1.2-6.el7
エラータID: AXSA:2016-431:01
Release date:
Tuesday, May 17, 2016 - 17:48
Subject:
libndp-1.2-6.el7
Affected Channels:
Asianux Server 7 for x86_64
Severity:
Moderate
Description:
This package contains a library which provides a wrapper
for IPv6 Neighbor Discovery Protocol. It also provides a tool
named ndptool for sending and receiving NDP messages.
Security issues fixed with this release:
CVE-2016-3698
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.
Solution:
Update packages.
CVEs:
CVE-2016-3698
libndp before 1.6, as used in NetworkManager, does not properly validate the origin of Neighbor Discovery Protocol (NDP) messages, which allows remote attackers to conduct man-in-the-middle attacks or cause a denial of service (network connectivity disruption) by advertising a node as a router from a non-local network.
libndp before 1.6, as used in NetworkManager, does not properly validate the origin of Neighbor Discovery Protocol (NDP) messages, which allows remote attackers to conduct man-in-the-middle attacks or cause a denial of service (network connectivity disruption) by advertising a node as a router from a non-local network.
Additional Info:
N/A
Download:
SRPMS
- libndp-1.2-6.el7.src.rpm
MD5: 7a0484014dbdbdb5b01fad8f7d427bfe
SHA-256: ec5028e22271881afa9091010d873e0e0f7cdac89282872908bf2264286199fb
Size: 343.56 kB
Asianux Server 7 for x86_64
- libndp-1.2-6.el7.x86_64.rpm
MD5: 6e5d0c3f56bf2bf3513740cefaabce9a
SHA-256: 089d2d3f9727ea2d7b049434b2effe7323061bdba4b8fe8a685210e73edef440
Size: 29.90 kB - libndp-1.2-6.el7.i686.rpm
MD5: 9e1c09b398cafa31f1d4e433ce0a444b
SHA-256: 2df363026cf9021618694edfe0d93801f7adac336e26efd5d9ffa08fea3e992e
Size: 29.72 kB
日本語