libndp-1.2-9.0.1.el7.AXS7

エラータID: AXSA:2024-8816:03

リリース日: 
2024/09/20 Friday - 17:07
題名: 
libndp-1.2-9.0.1.el7.AXS7
影響のあるチャネル: 
Asianux Server 7 for x86_64
Severity: 
High
Description: 

This package contains a library which provides a wrapper for IPv6 Neighbor
Discovery Protocol. It also provides a tool named ndptool for sending and
receiving NDP messages.

Security Fix(es):

* CVE-2024-5564: validate route information option length

CVE(s):
CVE-2024-5564
A vulnerability was found in libndp. This flaw allows a local malicious user to cause a buffer overflow in NetworkManager, triggered by sending a malformed IPv6 router advertisement packet. This issue occurred as libndp was not correctly validating the route length information.

解決策: 

Update packages.

追加情報: 

N/A

ダウンロード: 

Asianux Server 7 for x86_64
  1. libndp-1.2-9.0.1.el7.AXS7.i686.rpm
    MD5: 504c392e7e6f4c6cd938fb0d34fabcfc
    SHA-256: e122ced73c197489c309faa052502abfab1c5b679b682e9169f9b4f59c1a5213
    Size: 31.61 kB
  2. libndp-1.2-9.0.1.el7.AXS7.x86_64.rpm
    MD5: dddc25b9c669102058522289a695327e
    SHA-256: 3c38fe8441a11a9cef95cdca4d016d26d4a4e63de7fa94c379f19a3eb67367d7
    Size: 31.58 kB