Upstream information
Description
avahi-core/socket.c in avahi-daemon in Avahi before 0.6.29 allows remote attackers to cause a denial of service (infinite loop) via an empty mDNS (1) IPv4 or (2) IPv6 UDP packet to port 5353. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-2244.SUSE information
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
National Vulnerability Database | |
---|---|
Base Score | 5 |
Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Access Vector | Network |
Access Complexity | Low |
Authentication | None |
Confidentiality Impact | None |
Integrity Impact | None |
Availability Impact | Partial |
SUSE Security Advisories:
- SUSE-SR:2011:005, published Fri, 01 Apr 2011 13:00:00 +0000
List of released packages
Product(s) | Fixed package version(s) | References |
---|---|---|
SUSE Linux Enterprise Desktop 12 SP1 |
| Patchnames: SUSE Linux Enterprise Desktop 12 SP1 GA avahi-0.6.31-20.59 SUSE Linux Enterprise Software Development Kit 12 SP1 GA avahi-compat-howl-devel-0.6.31-20.59 |
SUSE Linux Enterprise Desktop 12 SP2 |
| Patchnames: SUSE Linux Enterprise Desktop 12 SP2 GA avahi-0.6.32-30.36 SUSE Linux Enterprise Software Development Kit 12 SP2 GA avahi-compat-howl-devel-0.6.32-30.36 |
SUSE Linux Enterprise Desktop 12 SP3 |
| Patchnames: SUSE Linux Enterprise Desktop 12 SP3 GA avahi-0.6.32-30.36 SUSE Linux Enterprise Software Development Kit 12 SP3 GA avahi-compat-howl-devel-0.6.32-30.36 |
SUSE Linux Enterprise Desktop 12 SP4 |
| Patchnames: SUSE Linux Enterprise Desktop 12 SP4 GA avahi-0.6.32-30.36 SUSE Linux Enterprise Software Development Kit 12 SP4 GA avahi-compat-howl-devel-0.6.32-30.36 |
SUSE Linux Enterprise Desktop 12 |
| Patchnames: SUSE Linux Enterprise Desktop 12 GA avahi-0.6.31-20.59 SUSE Linux Enterprise Software Development Kit 12 GA avahi-compat-howl-devel-0.6.31-20.59 |
SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server for SAP Applications 15 |
| Patchnames: SUSE Linux Enterprise Module for Basesystem 15 GA avahi-0.6.32-3.7 SUSE Linux Enterprise Module for Desktop Applications 15 GA avahi-autoipd-0.6.32-3.7 |
SUSE Linux Enterprise High Performance Computing 12 SP5 |
| Patchnames: SUSE Linux Enterprise High Performance Computing 12 SP5 GA avahi-0.6.32-32.3.1 |
SUSE Linux Enterprise Module for Basesystem 15 |
| Patchnames: SUSE Linux Enterprise Module for Basesystem 15 GA avahi-0.6.32-3.7 |
SUSE Linux Enterprise Module for Desktop Applications 15 |
| Patchnames: SUSE Linux Enterprise Module for Desktop Applications 15 GA avahi-autoipd-0.6.32-3.7 |
SUSE Linux Enterprise Server 12 SP1 |
| Patchnames: SUSE Linux Enterprise Server 12 SP1 GA avahi-0.6.31-20.59 SUSE Linux Enterprise Software Development Kit 12 SP1 GA avahi-compat-howl-devel-0.6.31-20.59 |
SUSE Linux Enterprise Server 12 SP2 |
| Patchnames: SUSE Linux Enterprise Server 12 SP2 GA avahi-0.6.32-30.36 SUSE Linux Enterprise Software Development Kit 12 SP2 GA avahi-compat-howl-devel-0.6.32-30.36 |
SUSE Linux Enterprise Server 12 SP3 |
| Patchnames: SUSE Linux Enterprise Server 12 SP3 GA avahi-0.6.32-30.36 SUSE Linux Enterprise Software Development Kit 12 SP3 GA avahi-compat-howl-devel-0.6.32-30.36 |
SUSE Linux Enterprise Server 12 SP4 |
| Patchnames: SUSE Linux Enterprise Server 12 SP4 GA avahi-0.6.32-30.36 SUSE Linux Enterprise Software Development Kit 12 SP4 GA avahi-compat-howl-devel-0.6.32-30.36 |
SUSE Linux Enterprise Server 12 SP5 |
| Patchnames: SUSE Linux Enterprise Server 12 SP5 GA avahi-0.6.32-32.3.1 SUSE Linux Enterprise Software Development Kit 12 SP5 GA avahi-compat-howl-devel-0.6.32-32.3.1 |
SUSE Linux Enterprise Server 12 |
| Patchnames: SUSE Linux Enterprise Server 12 GA avahi-0.6.31-20.25 SUSE Linux Enterprise Software Development Kit 12 GA avahi-compat-howl-devel-0.6.31-20.59 |
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 |
| Patchnames: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 GA avahi-0.6.32-30.36 |
SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP1 |
| Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP1 GA avahi-compat-howl-devel-0.6.31-20.59 |
SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP2 |
| Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP2 GA avahi-compat-howl-devel-0.6.32-30.36 |
SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP3 |
| Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP3 GA avahi-compat-howl-devel-0.6.32-30.36 |
SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP4 |
| Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP4 GA avahi-compat-howl-devel-0.6.32-30.36 |
SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 12 SP5 |
| Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP5 GA avahi-compat-howl-devel-0.6.32-32.3.1 |
SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Software Development Kit 12 |
| Patchnames: SUSE Linux Enterprise Software Development Kit 12 GA avahi-compat-howl-devel-0.6.31-20.59 |
SUSE Linux Micro 6.0 |
| Patchnames: SUSE Linux Micro 6.0 GA avahi-0.8-4.6 |
SUSE Linux Micro 6.1 |
| Patchnames: SUSE Linux Micro 6.1 GA avahi-0.8-slfo.1.1_1.3 |
openSUSE Leap 15.0 |
| Patchnames: openSUSE Leap 15.0 GA avahi-0.6.32-lp150.3.2 |
openSUSE Tumbleweed |
| Patchnames: openSUSE-Tumbleweed-2024-10363 |
SUSE Timeline for this CVE
CVE page created: Fri Jun 28 12:08:45 2013CVE page last modified: Tue Dec 17 16:14:41 2024