Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [day] [month] [year] [list]
Date: Fri, 20 Mar 2015 15:08:58 +1000
From: David Jorm <david.jorm@...il.com>
To: oss-security@...ts.openwall.com, 
	opendaylight-announce@...ts.opendaylight.org, 
	security-announce@...ts.opendaylight.org
Subject: OpenDaylight security advisory: CVE-2015-1778 authentication bypass,
 CVE-2015-1611 CVE-2015-1612 topology spoofing via LLDP

Hi All

OpenDaylight Helium SR3 has now been released, including patches for two
security vulnerabilities:

[Important] CVE-2015-1778 OpenDaylight: authentication bypass

[Moderate] CVE-2015-1611 CVE-2015-1612 openflowplugin: topology spoofing
via LLDP

Full details, including links to patched builds, are available on the
OpenDaylight security advisories page:

https://wiki.opendaylight.org/view/Security_Advisories
Thanks
David Jorm on behalf of the OpenDaylight security response team

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.