[Apollo] Advisories Statistics light light Login

RLSA-2024:4620

Security Mirrored from RHSA-2024:4620
Issued at: 2024-07-26
Updated at: 2024-07-26

Synopsis

Important: libndp security update



Description

Libndp is a library (used by NetworkManager) that provides a wrapper for the IPv6 Neighbor Discovery Protocol. It also provides a tool named ndptool for sending and receiving NDP messages.

Security Fix(es):

* libndp: buffer overflow in route information length field (CVE-2024-5564)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.



Affected products

Rocky Linux 8 aarch64 Rocky Linux 8 x86_64

Fixes

2284122

CVEs

CVE-2024-5564

Affected packages

Rocky Linux 8 aarch64 - BaseOS

libndp-0:1.7-7.el8_10.aarch64.rpm libndp-0:1.7-7.el8_10.src.rpm libndp-debuginfo-0:1.7-7.el8_10.aarch64.rpm libndp-debugsource-0:1.7-7.el8_10.aarch64.rpm

Rocky Linux 8 x86_64 - BaseOS

libndp-0:1.7-7.el8_10.i686.rpm libndp-0:1.7-7.el8_10.src.rpm libndp-0:1.7-7.el8_10.x86_64.rpm libndp-debuginfo-0:1.7-7.el8_10.i686.rpm libndp-debuginfo-0:1.7-7.el8_10.x86_64.rpm libndp-debugsource-0:1.7-7.el8_10.i686.rpm libndp-debugsource-0:1.7-7.el8_10.x86_64.rpm