SUSE-SU-2021:0551-1 -- SLES avahi, libavahi-client3, libavahi-common3, libavahi-core7, libavahi-devel, libavahi-glib-devel, libavahi-glib1, libavahi-gobject0, libavahi-ui-gtk3-0, libavahi-ui0, libdns_sd, libhowl0, typelib-1_0-Avahi-0_6, libavahi-gobject-devel| ID: oval:org.secpod.oval:def:89049429 | Date: (C)2023-09-27 (M)2023-11-23 |
| Class: PATCH | Family: unix |
This update for avahi fixes the following issues: - CVE-2021-26720: drop privileges when invoking avahi-daemon-check-dns.sh - Update avahi-daemon-check-dns.sh from Debian. Our previous version relied on ifconfig, route, and init.d. - Add sudo to requires: used to drop privileges.
| Platform: |
| SUSE Linux Enterprise Server 15 SP2 |
| SUSE Linux Enterprise Desktop 15 SP2 |
| Product: |
| avahi |
| libavahi-client3 |
| libavahi-common3 |
| libavahi-core7 |
| libavahi-devel |
| libavahi-glib-devel |
| libavahi-glib1 |
| libavahi-gobject0 |
| libavahi-ui-gtk3-0 |
| libavahi-ui0 |
| libdns_sd |
| libhowl0 |
| typelib-1_0-Avahi-0_6 |
| libavahi-gobject-devel |
