INFSA-2025:0288: NetworkManager security update
Information about definition
Identificator: INFSA-2025:0288
Type: security
Release date: 2025-01-21 18:02:10 UTC
Information about package
NetworkManager is a system network service that manages network devices and connections, attempting to keep active network connectivity when available. Its capabilities include managing Ethernet, wireless, mobile broadband (WWAN), and PPPoE devices, as well as providing VPN integration with a variety of different VPN services.
Vulnerabilities description
- CVE-2024-3661
DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify network traffic that was expected to be protected by the VPN. Bug fixes * Route to VPN server not stored in routing table that is specified by ipv4.route-table. * VPN connections do not support ipv4.routing-rules settings.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2024-3661
|
no information | 7.6 | no information |
Updated packages