Vulnerability Description
libndp before 1.6, as used in NetworkManager, does not properly validate the origin of Neighbor Discovery Protocol (NDP) messages, which allows remote attackers to conduct man-in-the-middle attacks or cause a denial of service (network connectivity disruption) by advertising a node as a router from a non-local network.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Redhat | Enterprise Linux Desktop | 7.0 |
| Redhat | Enterprise Linux Hpc Node | 7.0 |
| Redhat | Enterprise Linux Hpc Node Eus | 7.2 |
| Redhat | Enterprise Linux Server | 7.0 |
| Redhat | Enterprise Linux Server Aus | 7.2 |
| Redhat | Enterprise Linux Server Eus | 7.2 |
| Redhat | Enterprise Linux Workstation | 7.0 |
| Libndp | Libndp | <= 1.5 |
| Debian | Debian Linux | 8.0 |
| Canonical | Ubuntu Linux | 15.10 |
Related Weaknesses (CWE)
References
- http://www.debian.org/security/2016/dsa-3581
- http://www.openwall.com/lists/oss-security/2016/05/17/9
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.h
- http://www.ubuntu.com/usn/USN-2980-1
- https://github.com/jpirko/libndp/commit/2af9a55b38b55abbf05fd116ec097d4029115839
- https://github.com/jpirko/libndp/commit/a4892df306e0532487f1634ba6d4c6d4bb381c7f
- https://rhn.redhat.com/errata/RHSA-2016-1086.html
- http://www.debian.org/security/2016/dsa-3581
- http://www.openwall.com/lists/oss-security/2016/05/17/9
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.h
- http://www.ubuntu.com/usn/USN-2980-1
- https://github.com/jpirko/libndp/commit/2af9a55b38b55abbf05fd116ec097d4029115839
- https://github.com/jpirko/libndp/commit/a4892df306e0532487f1634ba6d4c6d4bb381c7f
- https://rhn.redhat.com/errata/RHSA-2016-1086.html
FAQ
What is CVE-2016-3698?
CVE-2016-3698 is a vulnerability with a CVSS score of 8.1 (HIGH). libndp before 1.6, as used in NetworkManager, does not properly validate the origin of Neighbor Discovery Protocol (NDP) messages, which allows remote attackers to conduct man-in-the-middle attacks or...
How severe is CVE-2016-3698?
CVE-2016-3698 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-3698?
Check the references section above for vendor advisories and patch information. Affected products include: Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Hpc Node, Redhat Enterprise Linux Hpc Node Eus, Redhat Enterprise Linux Server, Redhat Enterprise Linux Server Aus.