{"id":"CVE-2016-3698","details":"libndp before 1.6, as used in NetworkManager, does not properly validate the origin of Neighbor Discovery Protocol (NDP) messages, which allows remote attackers to conduct man-in-the-middle attacks or cause a denial of service (network connectivity disruption) by advertising a node as a router from a non-local network.","modified":"2026-07-08T12:44:02.288649Z","published":"2016-06-13T19:59:02.753Z","related":["openSUSE-SU-2024:10042-1"],"database_specific":{"unresolved_ranges":[{"vendor_product":"canonical:ubuntu_linux","cpes":["cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*","cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*"],"source":"CPE_STRING","extracted_events":[{"introduced":"15.10"},{"last_affected":"15.10"},{"introduced":"16.04"},{"last_affected":"16.04"}]},{"vendor_product":"debian:debian_linux","cpes":["cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*"],"source":"CPE_STRING","extracted_events":[{"introduced":"8.0"},{"last_affected":"8.0"}]},{"vendor_product":"redhat:enterprise_linux_desktop","cpes":["cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*"],"source":"CPE_STRING","extracted_events":[{"introduced":"7.0"},{"last_affected":"7.0"}]},{"vendor_product":"redhat:enterprise_linux_hpc_node","cpes":["cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*"],"source":"CPE_STRING","extracted_events":[{"introduced":"7.0"},{"last_affected":"7.0"}]},{"vendor_product":"redhat:enterprise_linux_hpc_node_eus","cpes":["cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:*"],"source":"CPE_STRING","extracted_events":[{"introduced":"7.2"},{"last_affected":"7.2"}]},{"vendor_product":"redhat:enterprise_linux_server","cpes":["cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*"],"source":"CPE_STRING","extracted_events":[{"introduced":"7.0"},{"last_affected":"7.0"}]},{"vendor_product":"redhat:enterprise_linux_server_aus","cpes":["cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*"],"source":"CPE_STRING","extracted_events":[{"introduced":"7.2"},{"last_affected":"7.2"}]},{"vendor_product":"redhat:enterprise_linux_server_eus","cpes":["cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*"],"source":"CPE_STRING","extracted_events":[{"introduced":"7.2"},{"last_affected":"7.2"}]},{"vendor_product":"redhat:enterprise_linux_workstation","cpes":["cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*"],"source":"CPE_STRING","extracted_events":[{"introduced":"7.0"},{"last_affected":"7.0"}]}]},"references":[{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2016/05/17/9"},{"type":"WEB","url":"http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html"},{"type":"ADVISORY","url":"http://www.debian.org/security/2016/dsa-3581"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-2980-1"},{"type":"ADVISORY","url":"https://rhn.redhat.com/errata/RHSA-2016-1086.html"},{"type":"FIX","url":"https://github.com/jpirko/libndp/commit/2af9a55b38b55abbf05fd116ec097d4029115839"},{"type":"FIX","url":"https://github.com/jpirko/libndp/commit/a4892df306e0532487f1634ba6d4c6d4bb381c7f"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/jpirko/libndp","events":[{"introduced":"0"},{"last_affected":"5c348445478b0b022a4276eff1d625224f2dd32c"},{"fixed":"2af9a55b38b55abbf05fd116ec097d4029115839"},{"fixed":"a4892df306e0532487f1634ba6d4c6d4bb381c7f"}],"database_specific":{"cpe":"cpe:2.3:a:libndp:libndp:*:*:*:*:*:*:*:*","source":["CPE_RANGE","REFERENCES"],"extracted_events":[{"introduced":"0"},{"last_affected":"1.5"}]}}],"versions":["v1.5","v1.4","v1.3","v1.2","v1.1","v1.0"],"database_specific":{"vanir_signatures":[{"target":{"file":"libndp/libndp.c"},"deprecated":false,"digest":{"line_hashes":["170176477519933285600355361331367013774","120904098440755147910116174783754776741","7894526475083051264666507975378376406","217364338339957537939019235054377776971","7407623137805926619280800212719797687","63088205776203570202086828173959958792","153581203926223722849680069361692604280","171309330756449757018071118347357954273","280859829450697165741373069303126313651","201995046116671457636065317904351417679","301529060522256388973626700898465159903","276894803681689366420526560669257674233","208362970776794385704871433908425704352","89432001669346666650050204064313273378","226056119545450624772288460962917176844","168270223811022951169218121137299259037","259126255868865405891638805049151054557","272114724437962512861027675571520485009","3429988923868265313120504226962620002"],"threshold":0.9},"signature_version":"v1","source":"https://github.com/jpirko/libndp/commit/2af9a55b38b55abbf05fd116ec097d4029115839","signature_type":"Line","id":"CVE-2016-3698-18f0b297"},{"target":{"file":"libndp/libndp.c"},"deprecated":false,"digest":{"line_hashes":["101531685102245183275852009936204835805","97214097350107449139354271253793144163","164556960884367075306208826080947227920","63667140911771292372519639404938362123","107609708243145846260850277971129018612","149671708942379045263423202375691929860","276736812418198674399398745332165992188","255153811896162706213876650589840007385","147620033244927339724801995357492862724","248492230984237394143240468981199335892","80532650512138466634566770911761801263","19379276848166018487743762528204049438","317732962020956697880670020394659768991","4713285105856074252637293696465359293","336392447973756466662138636616347655358","256441280703396429462980440770129052868","310670757024317316337915583468203254201","100533313525427938481399362732085311595","147006123485187320684094043079787332322","63532705780221147885641542842172196161","279088102222290451695944085394456378701","47225492609781377256839949416948704682","216455297242040471975488751603481145183","42708126467600362449193948110161610840","98864281191308664020340173720289236203","242382298386438782068416587705588555974","23852886056916299655593223487253425859","298088038683306022628626755404715910173","180079971066224120039924722704699715183","225678215534612598427683817518660938059","252274654423889629989601793849300079932","39873793423575350406519180824501182983","183596815582201256379123350069465895962"],"threshold":0.9},"signature_version":"v1","source":"https://github.com/jpirko/libndp/commit/a4892df306e0532487f1634ba6d4c6d4bb381c7f","signature_type":"Line","id":"CVE-2016-3698-459941ca"},{"target":{"function":"ndp_sock_open","file":"libndp/libndp.c"},"deprecated":false,"digest":{"length":777,"function_hash":"59048228406542646144257995526865974314"},"signature_version":"v1","source":"https://github.com/jpirko/libndp/commit/a4892df306e0532487f1634ba6d4c6d4bb381c7f","signature_type":"Function","id":"CVE-2016-3698-464868d7"},{"target":{"function":"ndp_sock_recv","file":"libndp/libndp.c"},"deprecated":false,"digest":{"length":1113,"function_hash":"22335990842408782660678923636076935878"},"signature_version":"v1","source":"https://github.com/jpirko/libndp/commit/a4892df306e0532487f1634ba6d4c6d4bb381c7f","signature_type":"Function","id":"CVE-2016-3698-4d71ff65"},{"target":{"function":"ndp_msg_check_valid","file":"libndp/libndp.c"},"deprecated":false,"digest":{"length":187,"function_hash":"27437530974325292487422374598980223295"},"signature_version":"v1","source":"https://github.com/jpirko/libndp/commit/2af9a55b38b55abbf05fd116ec097d4029115839","signature_type":"Function","id":"CVE-2016-3698-acf122a3"},{"target":{"function":"myrecvfrom6","file":"libndp/libndp.c"},"deprecated":false,"digest":{"length":961,"function_hash":"284878020047458585157100332374317942815"},"signature_version":"v1","source":"https://github.com/jpirko/libndp/commit/a4892df306e0532487f1634ba6d4c6d4bb381c7f","signature_type":"Function","id":"CVE-2016-3698-e76bffc9"}],"vanir_signatures_modified":"2026-07-08T12:44:02Z","source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-3698.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}