<div class="container">
<h1>Recommended update for open-lldp</h1>
<table class="table table-striped table-bordered">
<tbody>
<tr>
<th>Announcement ID:</th>
<td>SUSE-RU-2024:0627-2</td>
</tr>
<tr>
<th>Rating:</th>
<td>moderate</td>
</tr>
<tr>
<th>References:</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1212749">bsc#1212749</a>
</li>
<li style="display: inline;">
<a href="https://jira.suse.com/browse/PED-6852">jsc#PED-6852</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>Affected Products:</th>
<td>
<ul class="list-group">
<li class="list-group-item">SUSE Linux Enterprise Micro 5.5</li>
</ul>
</td>
</tr>
</tbody>
</table>
<p>An update that contains one feature and has one fix can now be installed.</p>
<h2>Description:</h2>
<p>This update for open-lldp fixes the following issues:</p>
<ul>
<li>open-lldp was updated to version v1.1+77.75e83b6fb98e:</li>
<li>Fixed issue with <code>lldpad.service</code> failing in login/sched nodes (bsc#1212749)</li>
<li>Fixed various NULL pointer dereference issues</li>
<li>dcbx: Fixed memory vulnerability (UAF)</li>
<li>dcbx: Fixed leak when receiving legacy TLVs with mismatched mode</li>
<li>lldp: Reject frames with duplicate TLVs</li>
<li>dcbx: Free manifest in rchange callback</li>
<li>dcbx: Avoid memory leak if ifup is called twice</li>
<li>ctrl_iface: Fixed a memory leak in ctrl_iface_deinit</li>
<li>lldp: Avoid sending uninitialized data</li>
<li>Reverted "Use interface index instead of name in libconfig"</li>
<li>agent: Reset frame status on message delete</li>
<li>basman: Use return address when pulling address</li>
<li>8021Qaz: Check for rx block validity</li>
<li>8021qaz: Fixed squelch initialization errors</li>
<li>macvtap: Fixed error condition</li>
<li>vdp22: converted command parsing to null term</li>
<li>vdp22: convert command parsing to null term</li>
</ul>
<h2>Patch Instructions:</h2>
<p>
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".<br/>
Alternatively you can run the command listed for your product:
</p>
<ul class="list-group">
<li class="list-group-item">
SUSE Linux Enterprise Micro 5.5
<br/>
<code>zypper in -t patch SUSE-SLE-Micro-5.5-2024-627=1</code>
</li>
</ul>
<h2>Package List:</h2>
<ul>
<li>
SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64)
<ul>
<li>open-lldp-debuginfo-1.1+77.75e83b6-150500.3.3.1</li>
<li>liblldp_clif1-debuginfo-1.1+77.75e83b6-150500.3.3.1</li>
<li>open-lldp-1.1+77.75e83b6-150500.3.3.1</li>
<li>open-lldp-debugsource-1.1+77.75e83b6-150500.3.3.1</li>
<li>liblldp_clif1-1.1+77.75e83b6-150500.3.3.1</li>
</ul>
</li>
</ul>
<h2>References:</h2>
<ul>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1212749">https://bugzilla.suse.com/show_bug.cgi?id=1212749</a>
</li>
<li>
<a href="https://jira.suse.com/browse/PED-6852">https://jira.suse.com/browse/PED-6852</a>
</li>
</ul>
</div>