Lucene search
UbuntuUSN-1084-1HistoryMar 07, 2011 - 12:00 a.m.
avahi vulnerability
2011-03-0700:00:00
ubuntu.com
32
9.3 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.075 Low
EPSS
Percentile
94.1%
Releases
- Ubuntu 10.10
- Ubuntu 10.04
- Ubuntu 9.10
- Ubuntu 8.04
Packages
- avahi - Avahi IPv4LL network address configuration daemon
Details
It was discovered that Avahi incorrectly handled empty UDP packets. A
remote attacker could send a specially-crafted packet and cause Avahi to
hang, resulting in a denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 9.10 | noarch | libavahi-core6 | < 0.6.25-1ubuntu5.3 | UNKNOWN |
| Ubuntu | 9.10 | noarch | avahi-autoipd | < 0.6.25-1ubuntu5.3 | UNKNOWN |
| Ubuntu | 9.10 | noarch | avahi-daemon | < 0.6.25-1ubuntu5.3 | UNKNOWN |
| Ubuntu | 9.10 | noarch | avahi-dbg | < 0.6.25-1ubuntu5.3 | UNKNOWN |
| Ubuntu | 9.10 | noarch | avahi-dnsconfd | < 0.6.25-1ubuntu5.3 | UNKNOWN |
| Ubuntu | 9.10 | noarch | avahi-ui-utils | < 0.6.25-1ubuntu5.3 | UNKNOWN |
| Ubuntu | 9.10 | noarch | avahi-utils | < 0.6.25-1ubuntu5.3 | UNKNOWN |
| Ubuntu | 9.10 | noarch | libavahi-client-dev | < 0.6.25-1ubuntu5.3 | UNKNOWN |
| Ubuntu | 9.10 | noarch | libavahi-client3 | < 0.6.25-1ubuntu5.3 | UNKNOWN |
| Ubuntu | 9.10 | noarch | libavahi-common-data | < 0.6.25-1ubuntu5.3 | UNKNOWN |
References
Related
nessus
nessus
Oracle Linux 5 : avahi (ELSA-2011-0436)
2013-07-12 00:00:00
CentOS 5 : avahi (CESA-2011:0436)
2011-04-15 00:00:00
Scientific Linux Security Update : avahi on SL6.x i386/x86_64
2012-08-01 00:00:00
openvas
openvas
Ubuntu Update for avahi vulnerability USN-1084-1
2011-03-15 00:00:00
Oracle: Security Advisory (ELSA-2011-0436)
2015-10-06 00:00:00
Mandriva Update for pango MDVSA-2011:040 (pango)
2011-03-07 00:00:00
redhat
redhat
(RHSA-2011:0436) Moderate: avahi security update
2011-04-12 00:00:00
(RHSA-2011:0779) Moderate: avahi security and bug fix update
2011-05-19 00:00:00
debian
debian
[SECURITY] [DSA 2174-1] avahi security update
2011-02-26 15:50:04
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:56:03
oraclelinux
oraclelinux
avahi security update
2011-04-12 00:00:00
avahi security and bug fix update
2011-05-28 00:00:00
centos
centos
avahi security update
2011-04-14 13:41:55
fedora
fedora
[SECURITY] Fedora 14 Update: avahi-0.6.27-8.fc14
2011-09-10 00:26:18
[SECURITY] Fedora 15 Update: avahi-0.6.29-1.fc15
2011-03-14 05:41:32
securityvulns
securityvulns
[ MDVSA-2011:037 ] avahi
2011-02-24 00:00:00
Avahi DNS server DoS
2011-02-24 00:00:00
ubuntucve
ubuntucve
CVE-2011-1002
2011-02-22 00:00:00
cve
cve
CVE-2011-1002
2011-02-22 19:00:00
CVE-2011-0634
2011-02-22 19:00:00
freebsd
freebsd
avahi -- denial of service
2011-02-21 00:00:00
gentoo
gentoo
Avahi: Denial of service
2011-10-22 00:00:00
prion
prion
Code injection
2011-02-22 19:00:00
debiancve
debiancve
CVE-2011-1002
2011-02-22 19:00:00
nmap
nmap
broadcast-avahi-dos NSE Script
2011-05-02 23:38:18
thn
thn
Nmap 5.59 BETA1 - 40 new NSE scripts & improved IPv6
2011-07-01 11:41:00
9.3 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.075 Low
EPSS
Percentile
94.1%
Related for USN-1084-1