CVE-2016-3698 (retired)

Priority
Description
libndp before 1.6, as used in NetworkManager, does not properly validate
the origin of Neighbor Discovery Protocol (NDP) messages, which allows
remote attackers to conduct man-in-the-middle attacks or cause a denial of
service (network connectivity disruption) by advertising a node as a router
from a non-local network.
Assigned-to
mdeslaur
Package
Upstream:released (1.6)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 16.04 LTS (Xenial Xerus):released (1.4-2ubuntu0.16.04.1)
More Information

Updated: 2019-09-19 15:57:51 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)