发布于3月6日3月6日 Members Oracle Linux: CVE-2024-6501: ELSA-2024-9317:NetworkManager security update (LOW) (Multiple Advisories) Severity 3 CVSS (AV:N/AC:H/Au:N/C:N/I:N/A:P) Published 07/04/2024 Created 11/23/2024 Added 11/21/2024 Modified 01/07/2025 Description A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled and an interface eth1 configured with LLDP enabled, a malicious user could inject a malformed LLDP packet. NetworkManager would crash, leading to a denial of service. Solution(s) oracle-linux-upgrade-networkmanager oracle-linux-upgrade-networkmanager-adsl oracle-linux-upgrade-networkmanager-bluetooth oracle-linux-upgrade-networkmanager-cloud-setup oracle-linux-upgrade-networkmanager-config-connectivity-oracle oracle-linux-upgrade-networkmanager-config-server oracle-linux-upgrade-networkmanager-dispatcher-routing-rules oracle-linux-upgrade-networkmanager-initscripts-updown oracle-linux-upgrade-networkmanager-libnm oracle-linux-upgrade-networkmanager-libnm-devel oracle-linux-upgrade-networkmanager-ovs oracle-linux-upgrade-networkmanager-ppp oracle-linux-upgrade-networkmanager-team oracle-linux-upgrade-networkmanager-tui oracle-linux-upgrade-networkmanager-wifi oracle-linux-upgrade-networkmanager-wwan References https://attackerkb.com/topics/cve-2024-6501 CVE - 2024-6501 ELSA-2024-9317
