Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-201509-05
HistorySep 24, 2015 - 12:00 a.m.

NetworkManager: Denial of service

2015-09-2400:00:00
Gentoo Foundation
security.gentoo.org
13

3.3 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:N/I:N/A:P

0.012 Low

EPSS

Percentile

85.1%

JSON

Background

NetworkManager is an universal network configuration daemon for laptops, desktops, servers and virtualization hosts.

Description

IPv6 Neighbour Discovery ICMP broadcast containing a non-route with a low hop limit causes a Denial of Service by lowering the hop limit on existing IPv6 routes in NetworkManager.

Impact

A remote attacker on the same network segment could cause a Denial of Service condition in NetworkManager

Workaround

There is no known workaround at this time.

Resolution

All NetworkManager users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=net-misc/networkmanager-1.0.2"
OSVersionArchitecturePackageVersionFilename
Gentooanyallnet-misc/networkmanager< 1.0.2UNKNOWN

Related

fedora 7
nessus 7
openvas 10
debiancve 1
redhat 1
ibm 1
prion 1
ubuntucve 1
oraclelinux 1
centos 1
cve 1
fedora
fedora
[SECURITY] Fedora 22 Update: NetworkManager-1.0.2-1.fc22
2015-05-11 19:04:52
[SECURITY] Fedora 22 Update: network-manager-applet-1.0.2-1.fc22
2015-05-11 19:04:52
[SECURITY] Fedora 22 Update: NetworkManager-openswan-1.0.2-1.fc22
2015-05-11 19:04:52
nessus
nessus
Fedora 21 : NetworkManager-0.9.10.2-5.fc21 (2015-7623)
2015-05-18 00:00:00
GLSA-201509-05 : NetworkManager: Denial of Service
2015-09-25 00:00:00
Fedora 22 : NetworkManager-1.0.2-1.fc22 / NetworkManager-openconnect-1.0.2-1.fc22 / etc (2015-7767)
2015-05-12 00:00:00
openvas
openvas
Fedora Update for NetworkManager-openconnect FEDORA-2015-7767
2015-07-07 00:00:00
Fedora Update for NetworkManager FEDORA-2015-7623
2015-06-09 00:00:00
Fedora Update for network-manager-applet FEDORA-2015-7767
2015-07-07 00:00:00
debiancve
debiancve
CVE-2015-2924
2015-11-16 21:59:00
redhat
redhat
(RHSA-2015:2315) Moderate: NetworkManager security, bug fix, and enhancement update
2015-11-19 13:34:47
ibm
ibm
Security Bulletin: Vulnerabilities in NetworkManager affect PowerKVM (CVE-2015-0272,CVE-2015-2924)
2018-06-18 01:30:52
prion
prion
Design/Logic Flaw
2015-11-16 21:59:00
ubuntucve
ubuntucve
CVE-2015-2924
2015-11-16 00:00:00
oraclelinux
oraclelinux
NetworkManager security, bug fix, and enhancement update
2015-11-24 00:00:00
centos
centos
ModemManager, NetworkManager, libnm, network, nm security update
2015-11-30 19:44:35
cve
cve
CVE-2015-2924
2015-11-16 21:59:00

3.3 Low

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:N/I:N/A:P

0.012 Low

EPSS

Percentile

85.1%

JSON
Related for GLSA-201509-05
fedora7nessus7openvas10debiancve1redhat1ibm1prion1ubuntucve1oraclelinux1centos1cve1