Amazon Linux 2 : NetworkManager (ALAS-2019-1144)
High Nessus Plugin ID 121053
SynopsisThe remote Amazon Linux 2 host is missing a security update.
DescriptionIt was discovered that systemd-network does not correctly keep track of a buffer size when constructing DHCPv6 packets. This flaw may lead to an integer underflow that can be used to produce an heap-based buffer overflow. A malicious host on the same network segment as the victim's one may advertise itself as a DHCPv6 server and exploit this flaw to cause a Denial of Service or potentially gain code execution on the victim's machine.(CVE-2018-15688)
SolutionRun 'yum update NetworkManager' to update your system.