Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [day] [month] [year] [list]
Date: Fri, 20 Mar 2015 15:08:58 +1000
From: David Jorm <david.jorm@...il.com>
To: oss-security@...ts.openwall.com, 
	opendaylight-announce@...ts.opendaylight.org, 
	security-announce@...ts.opendaylight.org
Subject: OpenDaylight security advisory: CVE-2015-1778 authentication bypass,
 CVE-2015-1611 CVE-2015-1612 topology spoofing via LLDP

Hi All

OpenDaylight Helium SR3 has now been released, including patches for two
security vulnerabilities:

[Important] CVE-2015-1778 OpenDaylight: authentication bypass

[Moderate] CVE-2015-1611 CVE-2015-1612 openflowplugin: topology spoofing
via LLDP

Full details, including links to patched builds, are available on the
OpenDaylight security advisories page:

https://wiki.opendaylight.org/view/Security_Advisories
Thanks
David Jorm on behalf of the OpenDaylight security response team

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ