Lucene search
K

118 matches found

OSV
OSV
added 2026/06/22 1:5 p.m.2 views

OPENSUSE-SU-2026:21146-1 Security update for lldpd

This update for lldpd fixes the following issues: Changes in lldpd: - Update to version 1.0.22 Fix CVE-2026-46433, out-of-bound read access when removing VLAN tag 787. Reject 0-length management address in LLDP. Fix race condition when creating the control socket. Fix FDP MAC address. Fix memory...

6.5CVSS5.9AI score0.00225EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/06/13 2:17 a.m.10 views

SUSE CVE-2026-46433

lldpd is an implementation of IEEE 802.1ab LLDP. Prior to version 1.0.22, lldpddecode in src/daemon/lldpd.c strips 802.1Q VLAN tags from received Ethernet frames by calling memmove to shift the frame payload 4 bytes left. The third argument byte count is s - 2 ETHERADDRLEN but should be s - 2...

6.5CVSS5.4AI score0.00225EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/06/11 8:1 a.m.15 views

lldpd: Heap OOB Read in VLAN Decapsulation memmove

...

6.5CVSS5.3AI score0.00225EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/09 10:49 p.m.46 views

CVE-2026-46433 lldpd: Heap OOB Read in VLAN Decapsulation memmove

lldpd is an implementation of IEEE 802.1ab LLDP. Prior to version 1.0.22, lldpddecode in src/daemon/lldpd.c strips 802.1Q VLAN tags from received Ethernet frames by calling memmove to shift the frame payload 4 bytes left. The third argument byte count is s - 2 ETHERADDRLEN but should be s - 2...

6.5CVSS0.00225EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/09 10:49 p.m.13 views

EUVD-2026-35858

lldpd is an implementation of IEEE 802.1ab LLDP. Prior to version 1.0.22, lldpddecode in src/daemon/lldpd.c strips 802.1Q VLAN tags from received Ethernet frames by calling memmove to shift the frame payload 4 bytes left. The third argument byte count is s - 2 ETHERADDRLEN but should be s - 2...

6.5CVSS5.5AI score0.00225EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2026/06/09 10:49 p.m.17 views

CVE-2026-46433

lldpd is an implementation of IEEE 802.1ab LLDP. Prior to version 1.0.22, lldpddecode in src/daemon/lldpd.c strips 802.1Q VLAN tags from received Ethernet frames by calling memmove to shift the frame payload 4 bytes left. The third argument byte count is s - 2 ETHERADDRLEN but should be s - 2...

6.5CVSS5.5AI score0.00225EPSS
Exploits0
OSV
OSV
added 2026/06/09 10:49 p.m.4 views

CVE-2026-46433 lldpd: Heap OOB Read in VLAN Decapsulation memmove

lldpd is an implementation of IEEE 802.1ab LLDP. Prior to version 1.0.22, lldpddecode in src/daemon/lldpd.c strips 802.1Q VLAN tags from received Ethernet frames by calling memmove to shift the frame payload 4 bytes left. The third argument byte count is s - 2 ETHERADDRLEN but should be s - 2...

6.5CVSS6AI score0.00225EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.17 views

lldpd 缓冲区错误漏洞

LLDPD is a daemon capable of receiving and sending LLDP frames. Versions of LLDPD prior to 1.0.22 contained a buffer error vulnerability. This vulnerability stemmed from an error in the memmove byte count calculation by the lldpddecode function when stripping the 802.1Q VLAN tag, which could lead...

6.5CVSS5.6AI score0.00225EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/16 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-46433

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lldpd is an implementation of IEEE 802.1ab LLDP. Prior to version 1.0.22, lldpddecode in src/daemon/lldpd.c strips 802.1Q VLAN tags from received Ethernet frame...

6.5CVSS5.5AI score0.00225EPSS
Exploits0References4
Rockylinux
Rockylinux
added 2026/04/07 12:1 a.m.6 views

lldpd bug fix and enhancement update

An update is available for lldpd. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list LLDP is an industry standard protocol designed to supplant proprietary Link-Lay...

5.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.12 views

MiracleLinux 9 : lldpd-1.0.18-4.el9 (AXSA:2024-9355:03)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-9355:03 advisory. lldp/openvswitch: denial of service via externally triggered memory leak CVE-2020-27827 lldpd: out-of-bounds read when decoding SONMP packets...

9.8CVSS5.6AI score0.03235EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2025/10/14 6:5 p.m.6 views

Astra Linux - уязвимость в openvswitch

Buffer overflow in the lldpdecode function in daemon/protocols/lldp.c in lldpd before 0.8.0 allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code via vectors involving large management addresses and TLV boundaries...

9.8CVSS8.1AI score0.05493EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2015-7907

Malware in sbrugna...

9.8CVSS9.2AI score0.05493EPSS
Exploits0References23
EUVD
EUVD
added 2025/10/07 12:30 a.m.18 views

EUVD-2015-7908

Malware in sbrugna...

7.5CVSS7.6AI score0.03EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-30526

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.01142EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-46388

Malicious code in bioql PyPI...

9.8CVSS8.1AI score0.00954EPSS
Exploits0References4
OSV
OSV
added 2025/09/25 6:12 p.m.9 views

CLSA-2025-1758823952 lldpd: Fix of CVE-2021-43612

CVE-2021-43612: fix out-of-bounds heap read in sonmpdecode function...

7.5CVSS5.8AI score0.01142EPSS
Exploits0References1
OSV
OSV
added 2025/09/12 3:53 p.m.9 views

CLSA-2025-1757692387 lldpd: Fix of CVE-2020-27827

CVE-2020-27827: fix memory allocation issue caused by specially crafted LLDP packets...

7.5CVSS5.8AI score0.03235EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.10 views

Alibaba Cloud Linux 3 : 0256: lldpd (ALINUX3-SA-2024:0256)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0256 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2020-27827: A flaw was found in multip...

9.8CVSS7.4AI score0.03235EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/19 12:0 a.m.12 views

RockyLinux 9 : lldpd (RLSA-2024:9158)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:9158 advisory. lldp/openvswitch: denial of service via externally triggered memory leak CVE-2020-27827 lldpd: out-of-bounds read when decoding SONMP packets...

9.8CVSS7.6AI score0.03235EPSS
Exploits0References7
Rows per page
Query Builder