radvd 1:1.8-1ubuntu0.1 source package in Ubuntu
radvd (1:1.8-1ubuntu0.1) oneiric-security; urgency=low * SECURITY UPDATE: privilege escalation via buffer overflow in ND_OPT_DNSSL_INFORMATION option parsing - debian/patches/CVE-2011-3601.patch: don't overflow int in process.c. - CVE-2011-3601 * SECURITY UPDATE: arbitrary file overwrite via interface name - debian/patches/CVE-2011-3602.patch: check for path traversal in device-linux.c. - CVE-2011-3602 * SECURITY UPDATE: incorrect privilege dropping handling - debian/patches/CVE-2011-3603.patch: fail on errors in privsep-linux.c, radvd.c. - CVE-2011-3603 * SECURITY UPDATE: denial or service via buffer overreads - debian/patches/CVE-2011-3604.patch: properly check length in process.c. - CVE-2011-3604 * SECURITY UPDATE: temporary denial of service via delay - debian/patches/CVE-2011-3605.patch: remove delay in process.c. - CVE-2011-3605 -- Marc Deslauriers <email address hidden> Wed, 12 Oct 2011 09:30:07 -0400
Binary packages built by this source
- radvd: Router Advertisement Daemon
IPv6 has a lot more support for autoconfiguration than IPv4. But
for this autoconfiguration to work on the hosts of a network, the
routers of the local network have to run a program which answers
the autoconfiguration requests of the hosts.
On Linux this program is called radvd, which stands for Router
ADVertisement Daemon. This daemon listens to router solicitations (RS)
and answers with router advertisement (RA). Furthermore unsolicited
RAs are also sent from time to time.