Security
Security
Multiple vulnerabilities have been found in OpenSLP, the worst of which could result in the arbitrary execution of code.
| Package | net-misc/openslp on all architectures |
|---|---|
| Affected versions | <= 2.0.0-r5 |
| Unaffected versions |
OpenSLP is an open-source implementation of Service Location Protocol (SLP).
Multiple vulnerabilities have been discovered in OpenSLP. Please review the CVE identifiers referenced below for details.
Please review the referenced CVE identifiers for details.
There is no known workaround at this time.
Gentoo has discontinued support for OpenSLP. We recommend that users unmerge OpenSLP:
# emerge --unmerge "net-libs/openslp"
NOTE: The Gentoo developer(s) maintaining OpenSLP have discontinued support at this time. It may be possible that a new Gentoo developer will update OpenSLP at a later date. No known alternatives to OpenSLP are in the tree at this time.
Release date
May 14, 2020
Latest revision
May 14, 2020: 2
Severity
normal
Exploitable
remote
Bugzilla entries