USN-3806-1: systemd vulnerability
5 November 2018
systemd-networkd could be made to crash or run programs if it received specially crafted network traffic.
- systemd - system and service manager
Felix Wilhelm discovered that the systemd-networkd DHCPv6 client
incorrectly handled certain DHCPv6 messages. In configurations where
systemd-networkd is being used, an attacker on the same network could use
this issue to cause systemd-networkd to crash, resulting in a denial of
service, or possibly execute arbitrary code.
The problem can be corrected by updating your system to the following package versions:
After a standard system update you need to reboot your computer to make
all the necessary changes.
- USN-3807-1: gir1.2-nm-1.0, libnm-dev, network-manager-dev, gir1.2-networkmanager-1.0, libnm-util-dev, libnm-glib-vpn-dev, libnm-glib4, network-manager, libnm0, libnm-util2, network-manager-config-connectivity-debian, network-manager-config-connectivity-ubuntu, libnm-glib-vpn1, libnm-glib-dev