libndp could be made to crash or run programs if it received specially
crafted network traffic.
Software Description:
- libndp: Library for Neighbor Discovery Protocol
Details:
It was discovered that libndp incorrectly handled certain malformed IPv6
router advertisement packets. A local attacker could possibly use this
issue to cause NetworkManager to crash, resulting in a denial of service,
or the execution of arbitrary code.
The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS libndp0 1.6-1ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 16.04 LTS libndp0 1.4-2ubuntu0.16.04.1+esm1 Available with Ubuntu Pro After a standard system update you need to reboot your computer to make all the necessary changes.
https://ubuntu.com/security/notices/USN-7248-1
CVE-2024-5564
Get the latest Linux and open source security news straight to your inbox.