Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:19923
HistoryJul 08, 2010 - 12:00 a.m.

Avahi avahi-core/socket.c文件畸形DNS报文拒绝服务漏洞

2010-07-0800:00:00
Root
www.seebug.org
19

0.032 Low

EPSS

Percentile

90.1%

JSON

BUGTRAQ ID: 41075
CVE ID: CVE-2010-2244

Avahi是用于简化在本地网络中发现服务的工具。

Avahi的avahi-core/socket.c文件中的avahi_recv_dns_packet_ipv4()和 avahi_recv_dns_packet_ipv6()函数没有正确地处理畸形DNS报文,远程攻击者可以通过发送一个带有错误校验和的DNS报文之后立即跟随一个带有正确校验和的DNS报文触发assertion错误,导致服务终止。

Avahi < 0.6.26
厂商补丁:

Avahi

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://avahi.org/milestone/Avahi 0.6.26

Related

openvas 31
veracode 1
fedora 4
nessus 16
debiancve 2
freebsd 1
securityvulns 3
gentoo 1
prion 2
oraclelinux 1
redhat 2
osv 1
debian 1
cve 2
ubuntu 1
ubuntucve 2
centos 1
openvas
openvas
Fedora Update for avahi FEDORA-2010-10581
2010-07-12 00:00:00
Fedora Update for avahi FEDORA-2010-10584
2010-07-12 00:00:00
Fedora Update for avahi FEDORA-2010-10584
2010-07-12 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:49:23
fedora
fedora
[SECURITY] Fedora 13 Update: avahi-0.6.25-7.fc13
2010-07-06 17:27:06
[SECURITY] Fedora 12 Update: avahi-0.6.25-7.fc12
2010-07-06 17:23:27
[SECURITY] Fedora 15 Update: avahi-0.6.29-1.fc15
2011-03-14 05:41:32
nessus
nessus
Fedora 13 : avahi-0.6.25-7.fc13 (2010-10581)
2010-07-07 00:00:00
Fedora 12 : avahi-0.6.25-7.fc12 (2010-10584)
2010-07-07 00:00:00
Oracle Linux 6 : avahi (ELSA-2011-0779)
2023-09-07 00:00:00
debiancve
debiancve
CVE-2010-2244
2010-07-08 12:54:00
CVE-2011-1002
2011-02-22 19:00:00
freebsd
freebsd
avahi -- denial of service
2011-02-21 00:00:00
securityvulns
securityvulns
Avahi DNS server DoS
2011-02-24 00:00:00
[ MDVSA-2011:037 ] avahi
2011-02-24 00:00:00
[SECURITY] [DSA 2086-1] New avahi packages fix denial of service
2010-08-05 00:00:00
gentoo
gentoo
Avahi: Denial of service
2011-10-22 00:00:00
prion
prion
Design/Logic Flaw
2010-07-08 12:54:00
Code injection
2011-02-22 19:00:00
oraclelinux
oraclelinux
avahi security update
2010-07-13 00:00:00
redhat
redhat
(RHSA-2010:0528) Moderate: avahi security update
2010-07-13 00:00:00
(RHSA-2010:0622) Important: rhev-hypervisor security and bug fix update
2010-08-19 00:00:00
osv
osv
avahi - denial of service
2010-08-04 00:00:00
debian
debian
[SECURITY] [DSA 2086-1] New avahi packages fix denial of service
2010-08-04 02:48:05
cve
cve
CVE-2011-1002
2011-02-22 19:00:00
CVE-2010-2244
2010-07-08 12:54:00
ubuntu
ubuntu
Avahi vulnerabilities
2010-09-29 00:00:00
ubuntucve
ubuntucve
CVE-2011-1002
2011-02-22 00:00:00
CVE-2010-2244
2010-07-08 00:00:00
centos
centos
avahi security update
2010-07-14 22:38:14

0.032 Low

EPSS

Percentile

90.1%

JSON
Related for SSV:19923
openvas31veracode1fedora4nessus16debiancve2freebsd1securityvulns3gentoo1prion2oraclelinux1redhat2osv1debian1cve2ubuntu1ubuntucve2centos1