View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2016-3698 severity moderate: SUSE including 20 source package names (libndp, libndp-1.2-6.el7_2, …), 46 product×package rows across 27 product lines (SUSE Liberty Linux 7, SUSE Linux Enterprise Desktop 12 SP2, … (27 product lines)): Fixed 40, Known Not Affected 6.
libndp before 1.6, as used in NetworkManager, does not properly validate the origin of Neighbor Discovery Protocol (NDP) messages, which allows remote attackers to conduct man-in-the-middle attacks or cause a denial of service (network connectivity disruption) by advertising a node as a router from a non-local network.