Multiple vulnerabilities have been found in OpenSLP, the worst of which could result in the arbitrary execution of code.
|Package||net-misc/openslp on all architectures|
|Affected versions||<= 2.0.0-r5|
OpenSLP is an open-source implementation of Service Location Protocol (SLP).
Multiple vulnerabilities have been discovered in OpenSLP. Please review the CVE identifiers referenced below for details.
Please review the referenced CVE identifiers for details.
There is no known workaround at this time.
Gentoo has discontinued support for OpenSLP. We recommend that users unmerge OpenSLP:
# emerge --unmerge "net-libs/openslp"
NOTE: The Gentoo developer(s) maintaining OpenSLP have discontinued support at this time. It may be possible that a new Gentoo developer will update OpenSLP at a later date. No known alternatives to OpenSLP are in the tree at this time.
May 14, 2020
May 14, 2020: 2