Issued:: 2024-07-18
Updated:: 2024-07-18

RHSA-2024:4640 - Security Advisory

Overview
Updated Packages

Synopsis

Important: libndp security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for libndp is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Libndp is a library (used by NetworkManager) that provides a wrapper for the IPv6 Neighbor Discovery Protocol. It also provides a tool named ndptool for sending and receiving NDP messages.

Security Fix(es):

libndp: buffer overflow in route information length field (CVE-2024-5564)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux Server - AUS 8.2 x86_64

Fixes

BZ - 2284122 - CVE-2024-5564 libndp: buffer overflow in route information length field

CVEs

CVE-2024-5564

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - AUS 8.2

SRPM
libndp-1.7-4.el8_2.src.rpm	SHA-256: 4501ec7dadb61fc475dea79cb045057a8337687174d8f6435379f8171c50c980
x86_64
libndp-1.7-4.el8_2.i686.rpm	SHA-256: 63a92947998bb74d2b8fc508bf85123c762dbc2b0e3802094b144fd2d0945650
libndp-1.7-4.el8_2.x86_64.rpm	SHA-256: fc0e83b1a45149e36ce7675ba2f3d2d997e863c3c3908efa9dfa10abd668219a
libndp-debuginfo-1.7-4.el8_2.i686.rpm	SHA-256: bd6266494a7c494abbb28e56994dbdff6a3208331455907f1f6a253e2aa7dd53
libndp-debuginfo-1.7-4.el8_2.x86_64.rpm	SHA-256: dc9b7d7bb9ae39c705299103da329d7abaf84e83fc6e77f5aa0f1d96e2c889e5
libndp-debugsource-1.7-4.el8_2.i686.rpm	SHA-256: 15f7c7b405abce6887ce1ebd1001a8a83eb09fb167f51c5efc4250118944abc7
libndp-debugsource-1.7-4.el8_2.x86_64.rpm	SHA-256: b4d197d029610d82bac68898e1fa81ee02dd595031800860eb6e2ee2b2feb8e7

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation