DSA-2086-1 avahi -- severalID: oval:org.secpod.oval:def:600125 | Date: (C)2011-01-28 (M)2023-12-26 |
Class: PATCH | Family: unix |
Several vulnerabilities have been discovered in the Avahi mDNS/DNS-SD daemon. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2009-0758 Rob Leslie discovered a denial of service vulnerability in the code used to reflect unicast mDNS traffic. CVE-2010-2244 Ludwig Nussel discovered a denial of service vulnerability in the processing of malformed DNS packets. For the stable distribution , this problem has been fixed in version 0.6.23-3lenny2. For the unstable distribution , these problems have been fixed in version 0.6.26-1. We recommend that you upgrade your Avahi packages.