All errata/p9/ALT-PU-2021-2129-1
ALT-PU-2021-2129-1

Package update NetworkManager in branch p9

Version1.18.11-alt1.gite2fdbc2b7482
Task#276659
Published2021-07-02
Max severityMEDIUM
Severity:

Closed issues (2)

BDU:2022-06889
MEDIUM6.1

Уязвимость подсистемы инициализации и управления службами Systemd, связанная с обходом аутентификации посредством спуфинга, позволяющая нарушителю вызвать отказ в обслуживании

Published: 2022-11-22Modified: 2024-04-04
CVSS 3.xMEDIUM 6.1
CVSS:3.x/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H
CVSS 2.0MEDIUM 5.7
CVSS:2.0/AV:A/AC:M/Au:N/C:N/I:N/A:C
References
CVE-2020-13529
MEDIUM6.1

An exploitable denial-of-service vulnerability exists in Systemd 245. A specially crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. An attacker can forge a pair of FORCERENEW and DCHP ACK packets to reconfigure the server.

Published: 2021-05-10Modified: 2024-11-21
CVSS 2.0LOW 2.9
CVSS:2.0/AV:A/AC:M/Au:N/C:N/I:N/A:P
CVSS 3.xMEDIUM 6.1
CVSS:3.x/CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H
References