CVE-2020-27827 log

Severity Medium
Remote Yes
Type Information disclosure
A security issue was found in lldpd before version 1.0.8. A packet that contains multiple instances of certain TLVs will cause lldpd to continually allocate memory and leak the old memory.  As an example, multiple instances of system name TLV will cause old values to be dropped by the decoding routine.
Group Package Affected Fixed Severity Status Ticket
AVG-1456 openvswitch 2.14.0-1 2.14.1-1 Medium Fixed
AVG-1451 lldpd 1.0.7-1 1.0.8-1 Medium Fixed
Date Advisory Group Package Severity Type
20 Jan 2021 ASA-202101-29 AVG-1451 lldpd Medium information disclosure
20 Jan 2021 ASA-202101-28 AVG-1456 openvswitch Medium multiple issues