Advisory ROSA-SA-2025-2738

Software: libndp 1.7 OS: ROSA Virtualization 3.0 packageevrstring: libndp-1.7-7.rv30 CVE-ID: CVE-2024-5564 BDU-ID: 2024-04337 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the libndp library is related to an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could...

OESA-2024-1723 libndp security update

This package contains a library which provides a wrapper for IPv6 Neighbor Discovery Protocol. It also provides a tool named ndptool for sending and receiving NDP messages. Security Fixes: A vulnerability was found in libndp. This flaw allows a local malicious user to cause a buffer overflow in...

The vulnerability of the libndp library, related to the execution of operations outside the buffer in memory, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the libndp library relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information by sending specially crafted IPv6 packets...

UBUNTU-CVE-2016-3698

libndp before 1.6, as used in NetworkManager, does not properly validate the origin of Neighbor Discovery Protocol NDP messages, which allows remote attackers to conduct man-in-the-middle attacks or cause a denial of service network connectivity disruption by advertising a node as a router from a...