MGASA-2021-0339

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2021-0339.html

Import Source

https://advisories.mageia.org/MGASA-2021-0339.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2021-0339

Related

CVE-2021-3502

Published

2021-07-10T20:00:34Z

Modified

2021-07-10T18:45:21Z

Summary

Updated avahi packages fix a security vulnerability

Details

A flaw was found in avahi 0.8-5. A reachable assertion is present in avahishostnameresolver_start function allowing a local attacker to crash the avahi service by requesting hostname resolutions through the avahi socket or dbus methods for invalid hostnames. The highest threat from this vulnerability is to the service availability (CVE-2021-3502).

References

https://advisories.mageia.org/MGASA-2021-0339.html
https://bugs.mageia.org/show_bug.cgi?id=29239
https://ubuntu.com/security/notices/USN-5008-1

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

MGASA-2021-0339

Affected packages