logo
DATABASE RESOURCES PRICING ABOUT US

openslp security update

Description

**CentOS Errata and Security Advisory** CESA-2020:0199 OpenSLP is an open source implementation of the Service Location Protocol (SLP) which is an Internet Engineering Task Force (IETF) standards track protocol and provides a framework to allow networking applications to discover the existence, location, and configuration of networked services in enterprise networks. Security Fix(es): * openslp: Heap-based buffer overflow in ProcessSrvRqst() in slpd_process.c leading to remote code execution (CVE-2019-5544) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. **Merged security bulletin from advisories:** https://lists.centos.org/pipermail/centos-announce/2020-January/060489.html **Affected packages:** openslp openslp-devel openslp-server **Upstream details at:** https://access.redhat.com/errata/RHSA-2020:0199


Affected Package


OS OS Version Package Name Package Version
CentOS 6 openslp 2.0.0-4.el6_10
CentOS 6 openslp-devel 2.0.0-4.el6_10
CentOS 6 openslp-server 2.0.0-4.el6_10
CentOS 6 openslp 2.0.0-4.el6_10
CentOS 6 openslp 2.0.0-4.el6_10
CentOS 6 openslp-devel 2.0.0-4.el6_10
CentOS 6 openslp-devel 2.0.0-4.el6_10
CentOS 6 openslp-server 2.0.0-4.el6_10
CentOS 6 openslp 2.0.0-4.el6_10

Related