UBUNTU-CVE-2015-2924

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2015-2924

Published: 16 Nov 2015, 21:59

Last modified:16 Jul 2025, 08:11

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

16 Nov 2015, 21:59

Published

Vulnerability first disclosed

16 Jul 2025, 08:11

Last Modified

Vulnerability information updated

Description

The receive_ra function in rdisc/nm-lndp-rdisc.c in the Neighbor Discovery (ND) protocol implementation in the IPv6 stack in NetworkManager 1.x allows remote attackers to reconfigure a hop-limit setting via a small hop_limit value in a Router Advertisement (RA) message, a similar issue to CVE-2015-2922.

Affected Systems

ubuntu•network-manager
< 1.0.4-0ubuntu5

References (3)

https://ubuntu.com/security/CVE-2015-2924
http://www.openwall.com/lists/oss-security/2015/04/04/2
https://www.cve.org/CVERecord?id=CVE-2015-2924