CVE-2024-5564
8.1
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
A vulnerability was found in libndp. This flaw allows a local malicious user to cause a buffer overflow in NetworkManager, triggered by sending a malformed IPv6 router advertisement packet. This issue occurred as libndp was not correctly validating the route length information.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
1.0 < 1.7-7 | affected | ||
| Red Hat | Red Hat Enterprise Linux 10 | 0:1.9-2.el10 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 7 Extended Lifecycle Support | 0:1.2-10.el7_9 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8 | 0:1.7-7.el8_10 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8.2 Advanced Update Support | 0:1.7-4.el8_2 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support | 0:1.7-6.el8_4 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8.4 Telecommunications Update Service | 0:1.7-6.el8_4 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions | 0:1.7-6.el8_4 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support | 0:1.7-7.el8_6 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8.6 Telecommunications Update Service | 0:1.7-7.el8_6 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions | 0:1.7-7.el8_6 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 8.8 Extended Update Support | 0:1.7-7.el8_8 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 9 | 0:1.8-6.el9_4 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions | 0:1.8-5.el9_0 < * | unaffected |
| Red Hat | Red Hat Enterprise Linux 9.2 Extended Update Support | 0:1.8-5.el9_2 < * | unaffected |
Weaknesses
- CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Workarounds
Currently there is no mitigation available for this vulnerability. Please make sure to update as the fixes become available.
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
CVE Program Container
Additional References
- https://access.redhat.com/errata/RHSA-2024:4618
- https://access.redhat.com/errata/RHSA-2024:4619
- https://access.redhat.com/errata/RHSA-2024:4620
- https://access.redhat.com/errata/RHSA-2024:4622
- https://access.redhat.com/errata/RHSA-2024:4636
- https://access.redhat.com/errata/RHSA-2024:4640
- https://access.redhat.com/errata/RHSA-2024:4641
- https://access.redhat.com/errata/RHSA-2024:4642
- https://access.redhat.com/errata/RHSA-2024:4643
- https://access.redhat.com/security/cve/CVE-2024-5564
- https://bugzilla.redhat.com/show_bug.cgi?id=2284122
- https://lists.debian.org/debian-lts-announce/2024/06/msg00011.html
References
- https://access.redhat.com/errata/RHBA-2025:6631
- https://access.redhat.com/errata/RHSA-2024:4618
- https://access.redhat.com/errata/RHSA-2024:4619
- https://access.redhat.com/errata/RHSA-2024:4620
- https://access.redhat.com/errata/RHSA-2024:4622
- https://access.redhat.com/errata/RHSA-2024:4636
- https://access.redhat.com/errata/RHSA-2024:4640
- https://access.redhat.com/errata/RHSA-2024:4641
- https://access.redhat.com/errata/RHSA-2024:4642
- https://access.redhat.com/errata/RHSA-2024:4643
- https://access.redhat.com/security/cve/CVE-2024-5564
- https://bugzilla.redhat.com/show_bug.cgi?id=2284122
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.