Fluid Attacks Database

Description

The receive_ra function in rdisc/nm-lndp-rdisc.c in the Neighbor Discovery (ND) protocol implementation in the IPv6 stack in NetworkManager 1.x allows remote attackers to reconfigure a hop-limit setting via a small hop_limit value in a Router Advertisement (RA) message, a similar issue to CVE-2015-2922.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	network-manager	>=0 <1.0.2-1	1.0.2-1
debian 14	network-manager	>=0 <1.0.2-1	1.0.2-1
debian 12	network-manager	>=0 <1.0.2-1	1.0.2-1
debian 13	network-manager	>=0 <1.0.2-1	1.0.2-1
rpm rhel7	network-manager-applet	<0:1.0.6-2.el7	0:1.0.6-2.el7
rpm rhel7	ModemManager	<0:1.1.0-8.git20130913.el7	0:1.1.0-8.git20130913.el7
rpm rhel7	NetworkManager-libreswan	<0:1.0.6-3.el7	0:1.0.6-3.el7
rpm rhel7	NetworkManager	<1:1.0.6-27.el7	1:1.0.6-27.el7

Aliases

1. CVE-2015-29242. NVD-2015-29243. OSV-DEBIAN-2015-29244. OSV-2015-29245. SECURITY-TRACKER-CVE-2015-2924

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.