INFBA-2025:6631: libndp security update
Information about definition
Identificator: INFBA-2025:6631
Type: bugfix
Release date: 2025-07-25 10:29:28 UTC
Information about package
libndp is a library that provides a wrapper for the IPv6 Neighbor Discovery Protocol (NDP). It's essentially a toolset that allows developers and system administrators to work with NDP, enabling them to send and receive NDP messages, build and parse NDP packets, and manage network connections on IPv6 networks.
Vulnerabilities description
- CVE-2024-5564
A vulnerability was found in libndp. This flaw allows a local malicious user to cause a buffer overflow in NetworkManager, triggered by sending a malformed IPv6 router advertisement packet. This issue occurred as libndp was not correctly validating the route length information.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2024-5564
|
no information | 8.1 | no information |
Updated packages
Preparing to download...