9 matches found
CVE-2021-3502 affecting package avahi for versions less than 0.8-1
CVE-2021-3502 affecting package avahi for versions less than 0.8-1. A patched version of the package is available...
avahi security update
0.8-15 - Fix CVE-2023-1981 2186689 0.8-14 - Fix CVE-2021-3502 1949949 0.8-13 - Fix CVE-2021-3468 1944092...
Moderate: Red Hat Security Advisory: avahi security update
An update for avahi is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...
ALSA-2023:6707 Moderate: avahi security update
Avahi is an implementation of the DNS Service Discovery and Multicast DNS specifications for Zero Configuration Networking. It facilitates service discovery on a local network. Avahi and Avahi-aware applications allow you to plug your computer into a network and, with no configuration, view other...
RHEL 9 : avahi (RHSA-2023:6707)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:6707 advisory. Avahi is an implementation of the DNS Service Discovery and Multicast DNS specifications for Zero Configuration Networking. It facilitates...
CVE-2021-36217
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority for the following reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-3502. Reason: This candidate is a duplicate of CVE-2021-3502. Notes: All CVE users should reference CVE-2021-3502 instead of this candidate. A...
USN-5008-1: Avahi vulnerabilities
Thomas Kremer discovered that Avahi incorrectly handled termination signals on the Unix socket. A local attacker could possibly use this issue to cause Avahi to hang, resulting in a denial of service. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 20.10. CVE-2021-3468 It...
AZL-40943 CVE-2021-3502 affecting package avahi for versions less than 0.8-1
A flaw was found in avahi 0.8-5. A reachable assertion is present in avahishostnameresolverstart function allowing a local attacker to crash the avahi service by requesting hostname resolutions through the avahi socket or dbus methods for invalid hostnames. The highest threat from this...
CVE-2021-3502
CVE-2021-3502 affects Avahi (vulnerable: avahi 0.8-5). The flaw is a reachable assertion in the function avahi_s_host_name_resolver_start , which allows a local attacker to crash the avahi-daemon by issuing hostname resolutions for badly formatted hostnames via the avahi socket or D-Bus. Impact: ...