Nixpkgs security tracker

Untriaged

Permalink CVE-2012-1096

created 1 month, 4 weeks ago

NetworkManager 0.9 and earlier allows local users to use other …

NetworkManager 0.9 and earlier allows local users to use other users' certificates or private keys when making a connection via the file path when adding a new connection.

References

https://security-tracker.debian.org/tracker/CVE-2012-1096 x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-1096 x_refsource_MISC
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2012-1096 x_refsource_MISC
https://access.redhat.com/security/cve/cve-2012-1096 x_refsource_MISC
http://www.openwall.com/lists/oss-security/2012/03/02/3 x_refsource_MISC
https://bugzilla.gnome.org/show_bug.cgi?id=793329 x_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2012-1096 x_transferredx_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-1096 x_transferredx_refsource_MISC
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2012-1096 x_transferredx_refsource_MISC
https://access.redhat.com/security/cve/cve-2012-1096 x_transferredx_refsource_MISC
http://www.openwall.com/lists/oss-security/2012/03/02/3 x_transferredx_refsource_MISC
https://bugzilla.gnome.org/show_bug.cgi?id=793329 x_transferredx_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2012-1096 x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-1096 x_refsource_MISC
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2012-1096 x_refsource_MISC
https://access.redhat.com/security/cve/cve-2012-1096 x_refsource_MISC
http://www.openwall.com/lists/oss-security/2012/03/02/3 x_refsource_MISC
https://bugzilla.gnome.org/show_bug.cgi?id=793329 x_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2012-1096 x_transferredx_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-1096 x_transferredx_refsource_MISC
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2012-1096 x_transferredx_refsource_MISC
https://access.redhat.com/security/cve/cve-2012-1096 x_transferredx_refsource_MISC
http://www.openwall.com/lists/oss-security/2012/03/02/3 x_transferredx_refsource_MISC
https://bugzilla.gnome.org/show_bug.cgi?id=793329 x_transferredx_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2012-1096 x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-1096 x_refsource_MISC
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2012-1096 x_refsource_MISC
https://access.redhat.com/security/cve/cve-2012-1096 x_refsource_MISC
http://www.openwall.com/lists/oss-security/2012/03/02/3 x_refsource_MISC
https://bugzilla.gnome.org/show_bug.cgi?id=793329 x_refsource_MISC
https://security-tracker.debian.org/tracker/CVE-2012-1096 x_transferredx_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-1096 x_transferredx_refsource_MISC
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2012-1096 x_transferredx_refsource_MISC
https://access.redhat.com/security/cve/cve-2012-1096 x_transferredx_refsource_MISC
http://www.openwall.com/lists/oss-security/2012/03/02/3 x_transferredx_refsource_MISC
https://bugzilla.gnome.org/show_bug.cgi?id=793329 x_transferredx_refsource_MISC

Affected products

NetworkManager

==0.9 and earlier

Matching in nixpkgs

pkgs.networkmanager

Network configuration and management tool

nixos-unstable 1.54.3
- nixpkgs-unstable 1.54.3
- nixos-unstable-small 1.54.3
nixos-25.11 1.54.3
- nixos-25.11-small 1.54.3
- nixpkgs-25.11-darwin 1.54.3

pkgs.networkmanager-ssh

SSH VPN integration for NetworkManager

nixos-unstable 1.4.2
- nixpkgs-unstable 1.4.2
- nixos-unstable-small 1.4.2
nixos-25.11 1.4.2
- nixos-25.11-small 1.4.2
- nixpkgs-25.11-darwin 1.4.2

pkgs.networkmanager-l2tp

L2TP plugin for NetworkManager

nixos-unstable l2tp-gnome-1.20.22
- nixpkgs-unstable l2tp-gnome-1.20.22
- nixos-unstable-small l2tp-gnome-1.20.22
nixos-25.11 l2tp-gnome-1.20.20
- nixos-25.11-small l2tp-gnome-1.20.20
- nixpkgs-25.11-darwin l2tp-gnome-1.20.20

pkgs.networkmanager-sstp

NetworkManager's sstp plugin

nixos-unstable 1.3.2
- nixpkgs-unstable 1.3.2
- nixos-unstable-small 1.3.2
nixos-25.11 1.3.2
- nixos-25.11-small 1.3.2
- nixpkgs-25.11-darwin 1.3.2

pkgs.networkmanager-vpnc

NetworkManager's VPNC plugin

nixos-unstable 1.4.0
- nixpkgs-unstable 1.4.0
- nixos-unstable-small 1.4.0
nixos-25.11 1.4.0
- nixos-25.11-small 1.4.0
- nixpkgs-25.11-darwin 1.4.0

pkgs.networkmanager_dmenu

Small script to manage NetworkManager connections with dmenu instead of nm-applet

nixos-unstable 2.6.3
- nixpkgs-unstable 2.6.3
- nixos-unstable-small 2.6.3
nixos-25.11 2.6.2
- nixos-25.11-small 2.6.2
- nixpkgs-25.11-darwin 2.6.2

pkgs.networkmanager-iodine

NetworkManager's iodine plugin

nixos-unstable 1.2.0-unstable-2025-12-22
- nixpkgs-unstable 1.2.0-unstable-2025-12-22
- nixos-unstable-small 1.2.0-unstable-2025-12-22
nixos-25.11 1.2.0-unstable-2025-10-11
- nixos-25.11-small 1.2.0-unstable-2025-10-11
- nixpkgs-25.11-darwin 1.2.0-unstable-2025-10-11

pkgs.networkmanager-openvpn

NetworkManager's OpenVPN plugin

nixos-unstable 1.12.3
- nixpkgs-unstable 1.12.3
- nixos-unstable-small 1.12.3
nixos-25.11 1.12.3
- nixos-25.11-small 1.12.3
- nixpkgs-25.11-darwin 1.12.3

pkgs.networkmanager-strongswan

NetworkManager's strongswan plugin

nixos-unstable 1.6.4
- nixpkgs-unstable 1.6.4
- nixos-unstable-small 1.6.4
nixos-25.11 1.6.4
- nixos-25.11-small 1.6.4
- nixpkgs-25.11-darwin 1.6.4

pkgs.networkmanager_strongswan

NetworkManager's strongswan plugin

nixos-unstable 1.6.4
- nixpkgs-unstable 1.6.4
- nixos-unstable-small 1.6.4
nixos-25.11 1.6.4
- nixos-25.11-small 1.6.4
- nixpkgs-25.11-darwin 1.6.4

pkgs.networkmanager-fortisslvpn

NetworkManager’s FortiSSL plugin

nixos-unstable 1.4.0
- nixpkgs-unstable 1.4.0
- nixos-unstable-small 1.4.0
nixos-25.11 1.4.0
- nixos-25.11-small 1.4.0
- nixpkgs-25.11-darwin 1.4.0

pkgs.networkmanager-openconnect

NetworkManager’s OpenConnect plugin

nixos-unstable 1.2.10
- nixpkgs-unstable 1.2.10
- nixos-unstable-small 1.2.10
nixos-25.11 1.2.10
- nixos-25.11-small 1.2.10
- nixpkgs-25.11-darwin 1.2.10

pkgs.libsForQt5.networkmanager-qt

None

pkgs.kdePackages.networkmanager-qt

Qt wrapper for NetworkManager API. Report bugs in bugs.kde.org, under product frameworks-networkmanager-qt.

nixos-unstable 6.22.0
- nixpkgs-unstable 6.23.0
- nixos-unstable-small 6.23.0
nixos-25.11 6.20.0
- nixos-25.11-small 6.20.0
- nixpkgs-25.11-darwin 6.20.0

pkgs.plasma5Packages.networkmanager-qt

None

pkgs.python312Packages.sdbus-networkmanager

python-sdbus binds for NetworkManager

nixos-25.11 2.0.0
- nixos-25.11-small 2.0.0
- nixpkgs-25.11-darwin 2.0.0

pkgs.python313Packages.sdbus-networkmanager

python-sdbus binds for NetworkManager

nixos-unstable 2.0.0
- nixpkgs-unstable 2.0.0
- nixos-unstable-small 2.0.0
nixos-25.11 2.0.0
- nixos-25.11-small 2.0.0
- nixpkgs-25.11-darwin 2.0.0

pkgs.python314Packages.sdbus-networkmanager

Python-sdbus binds for NetworkManager

nixos-unstable 2.0.0
- nixpkgs-unstable 2.0.0
- nixos-unstable-small 2.0.0

pkgs.haskellPackages.amazonka-networkmanager

Amazon Network Manager SDK

nixos-unstable 2.0-unstable-2025-04-16
- nixpkgs-unstable 2.0-unstable-2025-04-16
- nixos-unstable-small 2.0-unstable-2025-04-16
nixos-25.11 2.0-unstable-2025-04-16
- nixos-25.11-small 2.0-unstable-2025-04-16
- nixpkgs-25.11-darwin 2.0-unstable-2025-04-16

pkgs.python312Packages.mypy-boto3-networkmanager

Type annotations for boto3 networkmanager

nixos-25.11 boto3-networkmanager-1.41.1
- nixos-25.11-small boto3-networkmanager-1.41.1
- nixpkgs-25.11-darwin boto3-networkmanager-1.41.1

pkgs.python313Packages.mypy-boto3-networkmanager

Type annotations for boto3 networkmanager

nixos-unstable boto3-networkmanager-1.42.3
- nixpkgs-unstable boto3-networkmanager-1.42.3
- nixos-unstable-small boto3-networkmanager-1.42.3
nixos-25.11 boto3-networkmanager-1.41.1
- nixos-25.11-small boto3-networkmanager-1.41.1
- nixpkgs-25.11-darwin boto3-networkmanager-1.41.1

pkgs.python314Packages.mypy-boto3-networkmanager

Type annotations for boto3 networkmanager

nixos-unstable boto3-networkmanager-1.42.3
- nixpkgs-unstable boto3-networkmanager-1.42.3
- nixos-unstable-small boto3-networkmanager-1.42.3

pkgs.python312Packages.types-aiobotocore-networkmanager

Type annotations for aiobotocore networkmanager

nixos-25.11 2.25.2
- nixos-25.11-small 2.25.2
- nixpkgs-25.11-darwin 2.25.2

pkgs.python313Packages.types-aiobotocore-networkmanager

Type annotations for aiobotocore networkmanager

nixos-unstable 3.1.1
- nixpkgs-unstable 3.1.1
- nixos-unstable-small 3.1.1
nixos-25.11 2.25.2
- nixos-25.11-small 2.25.2
- nixpkgs-25.11-darwin 2.25.2

Package maintainers

@SuperSandro2000 Sandro Jäckel <sandro.jaeckel@gmail.com>
@ttuegel Thomas Tuegel <ttuegel@mailbox.org>
@K900 Ilya K. <me@0upti.me>
@ilya-fedin Ilya Fedin <fedin-ilja2010@ya.ru>
@LunNova Luna Nova <nixpkgs-maintainer@lunnova.dev>
@NickCao Nick Cao <nickcao@nichi.co>
@mjm Matt Moriarity <matt@mattmoriarity.com>
@nyanloutre Paul Trehiou <paul@nyanlout.re>
@obadz obadz <obadz-nixos@obadz.com>
@domenkozar Domen Kozar <domen@dev.si>
@jtojnar Jan Tojnar <jtojnar@gmail.com>
@abbradar Nikolay Amiantov <ab@fmap.me>
@jensbin Jens Binkert <jensbin+git@pm.me>
@mbalatsko Maksym Balatsko <mbalatsko@gmail.com>
@fabaff Fabian Affolter <mail@fabian-affolter.ch>
@camelpunch Andrew Bruce <me@andrewbruce.net>
@zhangxy-2023 Xinyao Zhang <zhangxy_2023@163.com>

Untriaged

Permalink CVE-2025-15497

created 2 months, 2 weeks ago

Insufficient epoch key slot processing in OpenVPN 2.7_alpha1 through 2.7_rc5 …

Insufficient epoch key slot processing in OpenVPN 2.7_alpha1 through 2.7_rc5 allows remote authenticated users to trigger an assert resulting in a denial of service

References

https://community.openvpn.net/Security%20Announcements/CVE-2025-15497 vendor-advisory
https://www.mail-archive.com/openvpn-announce@lists.sourceforge.net/msg00156.ht… release-notes

Affected products

OpenVPN

=<2.7_rc5

Matching in nixpkgs

pkgs.openvpn

Robust and highly flexible tunneling application

nixos-unstable 2.6.14
- nixpkgs-unstable 2.6.14
- nixos-unstable-small 2.6.14
nixos-25.11 2.6.14
- nixpkgs-25.11-darwin 2.6.14

pkgs.openvpn3

OpenVPN 3 Linux client

nixos-unstable 25
- nixpkgs-unstable 25
- nixos-unstable-small 25
nixos-25.11 25
- nixpkgs-25.11-darwin 25

pkgs.check-openvpn

Nagios/icinga/sensu check plugin for OpenVPN

nixos-unstable 0.0.1
- nixpkgs-unstable 0.0.1
- nixos-unstable-small 0.0.1

pkgs.openvpn-auth-ldap

LDAP authentication plugin for OpenVPN

nixos-unstable 2.0.4
- nixpkgs-unstable 2.0.4
- nixos-unstable-small 2.0.4
nixos-25.11 2.0.4
- nixpkgs-25.11-darwin 2.0.4

pkgs.namespaced-openvpn

Network namespace isolation for OpenVPN tunnels

nixos-unstable 0.6.0
- nixpkgs-unstable 0.6.0
- nixos-unstable-small 0.6.0
nixos-25.11 0.6.0
- nixpkgs-25.11-darwin 0.6.0

pkgs.openvpn_learnaddress

Openvpn learn-address script to manage a hosts-like file

nixos-unstable 2013-10-21
- nixpkgs-unstable 2013-10-21
- nixos-unstable-small 2013-10-21
nixos-25.11 2013-10-21
- nixpkgs-25.11-darwin 2013-10-21

pkgs.networkmanager-openvpn

NetworkManager's OpenVPN plugin

nixos-unstable 1.12.0
- nixpkgs-unstable 1.12.0
- nixos-unstable-small 1.12.0
nixos-25.11 1.12.3
- nixpkgs-25.11-darwin 1.12.3

pkgs.nagiosPlugins.check_openvpn

Nagios/icinga/sensu check plugin for OpenVPN

nixos-unstable 0.0.1
- nixpkgs-unstable 0.0.1
- nixos-unstable-small 0.0.1
nixos-25.11 0.0.1
- nixpkgs-25.11-darwin 0.0.1

Package maintainers

@peterhoeg Peter Hoeg <peter@hoeg.com>
@lodi Anthony Lodi <anthony.lodi@gmail.com>
@obadz obadz <obadz-nixos@obadz.com>
@jtojnar Jan Tojnar <jtojnar@gmail.com>
@benley Benjamin Staffin <benley@gmail.com>
@SCOTT-HAMILTON Scott Hamilton <sgn.hamilton@protonmail.com>
@JarvisCraft Petr Portnov <mrjarviscraft+nix@gmail.com>
@offlinehacker Jaka Hudoklin <jaka@x-truder.net>

Untriaged

Permalink CVE-2025-9615

created 2 months, 2 weeks ago

Networkmanager: networkmanager file access

A flaw was found in NetworkManager. The NetworkManager package allows access to files that may belong to other users. NetworkManager allows non-root users to configure the system's network. The daemon runs with root privileges and can access files owned by users different from the one who added the connection.

References

https://access.redhat.com/security/cve/CVE-2025-9615 vdb-entryx_refsource_REDHAT
RHBZ#2391503 x_refsource_REDHATissue-tracking
https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/issues/1809
https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/merge_requests/2…
https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/merge_requests/2…

Affected products

NetworkManager

Matching in nixpkgs

pkgs.networkmanager

Network configuration and management tool

nixos-unstable 1.52.1
- nixpkgs-unstable 1.52.1
- nixos-unstable-small 1.52.1
nixos-25.11 1.54.3
- nixpkgs-25.11-darwin 1.54.3

pkgs.networkmanager-ssh

SSH VPN integration for NetworkManager

nixos-25.11 1.4.2
- nixpkgs-25.11-darwin 1.4.2

pkgs.networkmanager-l2tp

L2TP plugin for NetworkManager

nixos-unstable l2tp-gnome-1.20.20
- nixpkgs-unstable l2tp-gnome-1.20.20
- nixos-unstable-small l2tp-gnome-1.20.20
nixos-25.11 l2tp-gnome-1.20.20
- nixpkgs-25.11-darwin l2tp-gnome-1.20.20

pkgs.networkmanager-sstp

NetworkManager's sstp plugin

nixos-unstable 1.3.2
- nixpkgs-unstable 1.3.2
- nixos-unstable-small 1.3.2
nixos-25.11 1.3.2
- nixpkgs-25.11-darwin 1.3.2

pkgs.networkmanager-vpnc

NetworkManager's VPNC plugin

nixos-unstable 1.4.0
- nixpkgs-unstable 1.4.0
- nixos-unstable-small 1.4.0
nixos-25.11 1.4.0
- nixpkgs-25.11-darwin 1.4.0

pkgs.networkmanager_dmenu

Small script to manage NetworkManager connections with dmenu instead of nm-applet

nixos-unstable 2.6.1
- nixpkgs-unstable 2.6.1
- nixos-unstable-small 2.6.1
nixos-25.11 2.6.2
- nixpkgs-25.11-darwin 2.6.2

pkgs.networkmanager-iodine

NetworkManager's iodine plugin

nixos-unstable 1.2.0-unstable-2024-11-02
- nixpkgs-unstable 1.2.0-unstable-2024-11-02
- nixos-unstable-small 1.2.0-unstable-2024-11-02
nixos-25.11 1.2.0-unstable-2025-10-11
- nixpkgs-25.11-darwin 1.2.0-unstable-2025-10-11

pkgs.networkmanager-openvpn

NetworkManager's OpenVPN plugin

nixos-unstable 1.12.0
- nixpkgs-unstable 1.12.0
- nixos-unstable-small 1.12.0
nixos-25.11 1.12.3
- nixpkgs-25.11-darwin 1.12.3

pkgs.networkmanager_strongswan

NetworkManager's strongswan plugin

nixos-unstable 1.6.2
- nixpkgs-unstable 1.6.2
- nixos-unstable-small 1.6.2
nixos-25.11 1.6.4
- nixpkgs-25.11-darwin 1.6.4

pkgs.networkmanager-fortisslvpn

NetworkManager’s FortiSSL plugin

nixos-unstable 1.4.0
- nixpkgs-unstable 1.4.0
- nixos-unstable-small 1.4.0
nixos-25.11 1.4.0
- nixpkgs-25.11-darwin 1.4.0

pkgs.networkmanager-openconnect

NetworkManager’s OpenConnect plugin

nixos-unstable 1.2.10
- nixpkgs-unstable 1.2.10
- nixos-unstable-small 1.2.10
nixos-25.11 1.2.10
- nixpkgs-25.11-darwin 1.2.10

pkgs.libsForQt5.networkmanager-qt

None

nixos-unstable 5.116.0
- nixpkgs-unstable 5.116.0
- nixos-unstable-small 5.116.0

pkgs.kdePackages.networkmanager-qt

Qt wrapper for NetworkManager API.

nixos-unstable 6.16.0
- nixpkgs-unstable 6.17.0
- nixos-unstable-small 6.17.0
nixos-25.11 6.20.0
- nixpkgs-25.11-darwin 6.20.0

pkgs.plasma5Packages.networkmanager-qt

None

nixos-unstable 5.116.0
- nixpkgs-unstable 5.116.0
- nixos-unstable-small 5.116.0

pkgs.python312Packages.sdbus-networkmanager

Python-sdbus binds for NetworkManager

nixos-unstable 2.0.0
- nixpkgs-unstable 2.0.0
- nixos-unstable-small 2.0.0
nixos-25.11 2.0.0
- nixpkgs-25.11-darwin 2.0.0

pkgs.python313Packages.sdbus-networkmanager

Python-sdbus binds for NetworkManager

nixos-unstable 2.0.0
- nixpkgs-unstable 2.0.0
- nixos-unstable-small 2.0.0
nixos-25.11 2.0.0
- nixpkgs-25.11-darwin 2.0.0

pkgs.haskellPackages.amazonka-networkmanager

Amazon Network Manager SDK

nixos-unstable 2.0
- nixpkgs-unstable 2.0
- nixos-unstable-small 2.0
nixos-25.11 2.0-unstable-2025-04-16
- nixpkgs-25.11-darwin 2.0-unstable-2025-04-16

pkgs.python312Packages.mypy-boto3-networkmanager

Type annotations for boto3 networkmanager

nixos-unstable boto3-networkmanager-1.40.0
- nixpkgs-unstable boto3-networkmanager-1.40.0
- nixos-unstable-small boto3-networkmanager-1.40.0
nixos-25.11 boto3-networkmanager-1.41.1
- nixpkgs-25.11-darwin boto3-networkmanager-1.41.1

pkgs.python313Packages.mypy-boto3-networkmanager

Type annotations for boto3 networkmanager

nixos-unstable boto3-networkmanager-1.40.0
- nixpkgs-unstable boto3-networkmanager-1.40.0
- nixos-unstable-small boto3-networkmanager-1.40.0
nixos-25.11 boto3-networkmanager-1.41.1
- nixpkgs-25.11-darwin boto3-networkmanager-1.41.1

pkgs.python312Packages.types-aiobotocore-networkmanager

Type annotations for aiobotocore networkmanager

nixos-unstable 2.23.2
- nixpkgs-unstable 2.23.2
- nixos-unstable-small 2.23.2
nixos-25.11 2.25.2
- nixpkgs-25.11-darwin 2.25.2

pkgs.python313Packages.types-aiobotocore-networkmanager

Type annotations for aiobotocore networkmanager

nixos-unstable 2.23.2
- nixpkgs-unstable 2.23.2
- nixos-unstable-small 2.23.2
nixos-25.11 2.25.2
- nixpkgs-25.11-darwin 2.25.2

Package maintainers

@ttuegel Thomas Tuegel <ttuegel@mailbox.org>
@K900 Ilya K. <me@0upti.me>
@LunNova Luna Nova <nixpkgs-maintainer@lunnova.dev>
@NickCao Nick Cao <nickcao@nichi.co>
@mjm Matt Moriarity <matt@mattmoriarity.com>
@SuperSandro2000 Sandro Jäckel <sandro.jaeckel@gmail.com>
@ilya-fedin Ilya Fedin <fedin-ilja2010@ya.ru>
@nyanloutre Paul Trehiou <paul@nyanlout.re>
@jtojnar Jan Tojnar <jtojnar@gmail.com>
@obadz obadz <obadz-nixos@obadz.com>
@abbradar Nikolay Amiantov <ab@fmap.me>
@jensbin Jens Binkert <jensbin+git@pm.me>
@mbalatsko Maksym Balatsko <mbalatsko@gmail.com>
@fabaff Fabian Affolter <mail@fabian-affolter.ch>
@camelpunch Andrew Bruce <me@andrewbruce.net>
@zhangxy-2023 Xinyao Zhang <zhangxy_2023@163.com>

Untriaged

Permalink CVE-2024-6501

3.1 LOW

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): NONE
User interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): LOW

created 1 year, 3 months ago

Networkmanager: denial of service

A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled and an interface eth1 configured with LLDP enabled, a malicious user could inject a malformed LLDP packet. NetworkManager would crash, leading to a denial of service.

References

RHSA-2024:9317 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHAT
RHBZ#2295734 x_refsource_REDHATissue-tracking
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2295734 x_refsource_REDHATissue-trackingx_transferred
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHAT
RHBZ#2295734 x_refsource_REDHATissue-tracking
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHAT
RHBZ#2295734 x_refsource_REDHATissue-tracking
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHAT
RHBZ#2295734 x_refsource_REDHATissue-tracking
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2295734 x_refsource_REDHATissue-trackingx_transferred
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHAT
RHBZ#2295734 x_refsource_REDHATissue-tracking
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2295734 x_refsource_REDHATissue-trackingx_transferred
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHAT
RHBZ#2295734 x_refsource_REDHATissue-tracking
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2295734 x_refsource_REDHATissue-trackingx_transferred
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHAT
RHBZ#2295734 x_refsource_REDHATissue-tracking
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2295734 x_refsource_REDHATissue-trackingx_transferred
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHAT
RHBZ#2295734 x_refsource_REDHATissue-tracking
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2295734 x_refsource_REDHATissue-trackingx_transferred
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHAT
RHBZ#2295734 x_refsource_REDHATissue-tracking
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2295734 x_refsource_REDHATissue-trackingx_transferred
RHSA-2024:9317 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHAT
RHBZ#2295734 x_refsource_REDHATissue-tracking
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2295734 x_refsource_REDHATissue-trackingx_transferred
RHSA-2024:9317 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHAT
RHBZ#2295734 x_refsource_REDHATissue-tracking
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2295734 x_refsource_REDHATissue-trackingx_transferred
RHSA-2024:9317 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHAT
RHBZ#2295734 x_refsource_REDHATissue-tracking
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2295734 x_refsource_REDHATissue-trackingx_transferred
RHSA-2024:9317 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHAT
RHBZ#2295734 x_refsource_REDHATissue-tracking
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2295734 x_refsource_REDHATissue-trackingx_transferred
RHSA-2024:9317 vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHAT
RHBZ#2295734 x_refsource_REDHATissue-tracking
https://access.redhat.com/security/cve/CVE-2024-6501 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2295734 x_refsource_REDHATissue-trackingx_transferred

Affected products

NetworkManager

<1.48.10-2
*

Matching in nixpkgs

pkgs.networkmanager-l2tp

L2TP plugin for NetworkManager

nixos-unstable l2tp-gnome-1.20.16
- nixpkgs-unstable l2tp-gnome-1.20.16
- nixos-unstable-small l2tp-gnome-1.20.16

pkgs.networkmanager-sstp

NetworkManager's sstp plugin

nixos-unstable 1.3.2
- nixpkgs-unstable 1.3.2
- nixos-unstable-small 1.3.2

pkgs.networkmanager-vpnc

NetworkManager's VPNC plugin

nixos-unstable 1.2.8
- nixpkgs-unstable 1.2.8
- nixos-unstable-small 1.2.8

pkgs.networkmanager-iodine

NetworkManager's iodine plugin

nixos-unstable 1.2.0-unstable-2024-11-02
- nixpkgs-unstable 1.2.0-unstable-2024-11-02
- nixos-unstable-small 1.2.0-unstable-2024-11-02

pkgs.networkmanager-openvpn

NetworkManager's OpenVPN plugin

nixos-unstable 1.12.0
- nixpkgs-unstable 1.12.0
- nixos-unstable-small 1.12.0

pkgs.networkmanager_strongswan

NetworkManager's strongswan plugin

nixos-unstable 1.6.0
- nixpkgs-unstable 1.6.0
- nixos-unstable-small 1.6.0

pkgs.networkmanager-fortisslvpn

NetworkManager’s FortiSSL plugin

nixos-unstable 1.4.0
- nixpkgs-unstable 1.4.0
- nixos-unstable-small 1.4.0

pkgs.networkmanager-openconnect

NetworkManager’s OpenConnect plugin

nixos-unstable 1.2.10
- nixpkgs-unstable 1.2.10
- nixos-unstable-small 1.2.10

Package maintainers

@obadz obadz <obadz-nixos@obadz.com>
@jtojnar Jan Tojnar <jtojnar@gmail.com>
@domenkozar Domen Kozar <domen@dev.si>
@abbradar Nikolay Amiantov <ab@fmap.me>

Suggestions search

References

Affected products

Matching in nixpkgs

pkgs.networkmanager

pkgs.networkmanager-ssh

pkgs.networkmanager-l2tp

pkgs.networkmanager-sstp

pkgs.networkmanager-vpnc

pkgs.networkmanager_dmenu

pkgs.networkmanager-iodine

pkgs.networkmanager-openvpn

pkgs.networkmanager-strongswan

pkgs.networkmanager_strongswan

pkgs.networkmanager-fortisslvpn

pkgs.networkmanager-openconnect

pkgs.libsForQt5.networkmanager-qt

pkgs.kdePackages.networkmanager-qt

pkgs.plasma5Packages.networkmanager-qt

pkgs.python312Packages.sdbus-networkmanager

pkgs.python313Packages.sdbus-networkmanager

pkgs.python314Packages.sdbus-networkmanager

pkgs.haskellPackages.amazonka-networkmanager

pkgs.python312Packages.mypy-boto3-networkmanager

pkgs.python313Packages.mypy-boto3-networkmanager

pkgs.python314Packages.mypy-boto3-networkmanager

pkgs.python312Packages.types-aiobotocore-networkmanager

pkgs.python313Packages.types-aiobotocore-networkmanager

Package maintainers

References

Affected products

Matching in nixpkgs

pkgs.openvpn

pkgs.openvpn3

pkgs.check-openvpn

pkgs.openvpn-auth-ldap

pkgs.namespaced-openvpn

pkgs.openvpn_learnaddress

pkgs.networkmanager-openvpn

pkgs.nagiosPlugins.check_openvpn

Package maintainers

References

Affected products

Matching in nixpkgs

pkgs.networkmanager

pkgs.networkmanager-ssh

pkgs.networkmanager-l2tp

pkgs.networkmanager-sstp

pkgs.networkmanager-vpnc

pkgs.networkmanager_dmenu

pkgs.networkmanager-iodine

pkgs.networkmanager-openvpn

pkgs.networkmanager_strongswan

pkgs.networkmanager-fortisslvpn

pkgs.networkmanager-openconnect

pkgs.libsForQt5.networkmanager-qt

pkgs.kdePackages.networkmanager-qt

pkgs.plasma5Packages.networkmanager-qt

pkgs.python312Packages.sdbus-networkmanager

pkgs.python313Packages.sdbus-networkmanager

pkgs.haskellPackages.amazonka-networkmanager

pkgs.python312Packages.mypy-boto3-networkmanager

pkgs.python313Packages.mypy-boto3-networkmanager

pkgs.python312Packages.types-aiobotocore-networkmanager

pkgs.python313Packages.types-aiobotocore-networkmanager

Package maintainers

References

Affected products

Matching in nixpkgs

pkgs.networkmanager-l2tp

pkgs.networkmanager-sstp

pkgs.networkmanager-vpnc

pkgs.networkmanager-iodine

pkgs.networkmanager-openvpn

pkgs.networkmanager_strongswan

pkgs.networkmanager-fortisslvpn

pkgs.networkmanager-openconnect

Package maintainers