SUSE-SU-2019:1369-1 Security update for NetworkManager

This update for NetworkManager fixes the following issues: Following security issue was fixed: - CVE-2018-1000135: A potential leak of private DNS queries to other DNS servers could happen while on VPN bsc1086263, bgo746422...

EulerOS Virtualization for ARM 64 3.0.1.0 : dhcp (EulerOS-SA-2019-1379)

According to the versions of the dhcp packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - It was found that the DHCP daemon did not properly clean up closed OMAPI connections in certain cases. A remote attacker...

Fedora Update for NetworkManager FEDORA-2018-71d85bc8cd

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. It was found that the Linux kernel's IPv6 network stack did not properly validate the value of the MTU variable when it was set. A remote attacker could potentially use this flaw to disrupt a target system's networking packet loss by setting an invalid M...

EulerOS 2.0 SP3 : NetworkManager (EulerOS-SA-2019-1322)

According to the version of the NetworkManager packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Out-of-bounds heap write in systemd-networkd dhcpv6 option handling CVE-2018-15688 Note that Tenable Network Security has extracted the...

EulerOS 2.0 SP2 : NetworkManager (EulerOS-SA-2019-1119)

According to the version of the NetworkManager packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - systemd: Out-of-bounds heap write in systemd-networkd dhcpv6 option handling CVE-2018-15688 Note that Tenable Network Security has extracte...

Arbitrary Command Execution

dhcp is vulnerable to arbitrary command execution attacks. The vulnerability exists as DHCP packages in Red Hat Enterprise Linux 6 and 7, Fedora 28, and earlier are vulnerable to a command injection flaw in the NetworkManager integration script included in the DHCP client. A malicious DHCP server...

Red Hat NetworkManager DHCP Command Injection (CVE-2018-1111)

A command injection vulnerability has been reported in the Red Hat Network Manager. This vulnerability is due to improper validation of DHCP responses by Network Manager scripts. A remote attacker could exploit this vulnerability by sending malicious DHCP responses to a vulnerable target...

Amazon Linux 2 : NetworkManager (ALAS-2019-1144)

It was discovered that systemd-network does not correctly keep track of a buffer size when constructing DHCPv6 packets. This flaw may lead to an integer underflow that can be used to produce an heap-based buffer overflow. A malicious host on the same network segment as the victim's one may...

Important: NetworkManager

Issue Overview: It was discovered that systemd-network does not correctly keep track of a buffer size when constructing DHCPv6 packets. This flaw may lead to an integer underflow that can be used to produce an heap-based buffer overflow. A malicious host on the same network segment as the victim'...

Fedora 28 : 1:NetworkManager (2018-7243f31304)

ifcfg: fix crash parsing DNS entries rh 1607866 - dhcp: fix out-of-bounds heap write for DHCPv6 with internal plugin CVE-2018-15688 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to...

Fedora 28 : 1:NetworkManager-vpnc (2018-eb5ea0abaf)

Update to 1.2.6 to fix a local authenticated privilege escalation bug CVE-2018-10900. The issue has been discovered and responsibly disclosed by Denis Andzakovic: https://pulsesecurity.co.nz/advisories/NM-VPNC-Privesc Note that Tenable Network Security has extracted the preceding description bloc...

Fedora 29 : 1:NetworkManager (2018-71d85bc8cd)

dhcp: fix out-of-bounds heap write for DHCPv6 with internal plugin CVE-2018-15688 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

CentOS Update for NetworkManager CESA-2018:3665 centos7

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS 7 : NetworkManager (CESA-2018:3665)

An update for NetworkManager is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

Scientific Linux Security Update : NetworkManager on SL7.x x86_64 (20181127)

Security Fixes : - systemd: Out-of-bounds heap write in systemd-networkd dhcpv6 option handling CVE-2018-15688 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include"compat.inc"; if description scriptid119249; scriptversion"1.8";...

Oracle Linux 7 : NetworkManager (ELSA-2018-3665)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2018-3665 advisory. 1:1.12.0-8 - dhcp: fix out-of-bounds heap write for DHCPv6 with internal plugin CVE-2018-15688 Tenable has extracted the preceding description block directly fr...

Important: Red Hat Security Advisory: NetworkManager security update

An update for NetworkManager is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

NetworkManager security update

1:1.12.0-8 - dhcp: fix out-of-bounds heap write for DHCPv6 with internal plugin CVE-2018-15688...

RHEL 7 : NetworkManager (RHSA-2018:3665)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:3665 advisory. - systemd: Out-of-bounds heap write in systemd-networkd dhcpv6 option handling CVE-2018-15688 Note that Nessus has not tested for this issue but has...