Rocky Linux: RLSA-2024:4620 libndp security update Security Advisories Updates
Summary
An update is available for libndp. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Libndp is a library (used by NetworkManager) that provides a wrapper for the IPv6 Neighbor Discovery Protocol. It also provides a tool named ndptool for sending and receiving NDP messages. Security Fix(es): * libndp: buffer overflow in route information length field (CVE-2024-5564) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.
RPMs
libndp-0:1.7-7.el8_10.aarch64.rpm
libndp-0:1.7-7.el8_10.i686.rpm
libndp-0:1.7-7.el8_10.src.rpm
libndp-0:1.7-7.el8_10.x86_64.rpm
libndp-debuginfo-0:1.7-7.el8_10.aarch64.rpm
libndp-debuginfo-0:1.7-7.el8_10.i686.rpm
libndp-debuginfo-0:1.7-7.el8_10.x86_64.rpm
libndp-debugsource-0:1.7-7.el8_10.aarch64.rpm
libndp-debugsource-0:1.7-7.el8_10.i686.rpm
libndp-debugsource-0:1.7-7.el8_10.x86_64.rpm
References
No References
CVEs
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5564
Fixes
https://bugzilla.redhat.com/show_bug.cgi?id=2284122