Fedora 20: openslp Security Update
Summary
Service Location Protocol is an IETF standards track protocol that
provides a framework to allow networking applications to discover the
existence, location, and configuration of networked services in
enterprise networks.
OpenSLP is an open source implementation of the SLPv2 protocol as defined
by RFC 2608 and RFC 2614.
Update Information:
openslp: denial of service vulnerability (CVE-2010-3609)
Change Log
* Mon May 11 2015 Rex Dieter
References
[ 1 ] Bug #684294 - CVE-2010-3609 openslp: denial of service vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=684294 [ 2 ] Bug #857242 - CVE-2012-4428 openslp: out-of-bounds read in SLPIntersectStringList() can cause DoS https://bugzilla.redhat.com/show_bug.cgi?id=857242
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update openslp' at the command line. For more information, refer to "Managing Software with yum", available at .