SUSE-SU-2021:0551-1 -- SLES avahi, libavahi-client3, libavahi-common3, libavahi-core7, libavahi-devel, libavahi-glib-devel, libavahi-glib1, libavahi-gobject0, libavahi-ui-gtk3-0, libavahi-ui0, libdns_sd, libhowl0, typelib-1_0-Avahi-0_6, libavahi-gobject-develID: oval:org.secpod.oval:def:89049429 | Date: (C)2023-09-27 (M)2023-11-23 |
Class: PATCH | Family: unix |
This update for avahi fixes the following issues: - CVE-2021-26720: drop privileges when invoking avahi-daemon-check-dns.sh - Update avahi-daemon-check-dns.sh from Debian. Our previous version relied on ifconfig, route, and init.d. - Add sudo to requires: used to drop privileges.
Platform: |
SUSE Linux Enterprise Server 15 SP2 |
SUSE Linux Enterprise Desktop 15 SP2 |
Product: |
avahi |
libavahi-client3 |
libavahi-common3 |
libavahi-core7 |
libavahi-devel |
libavahi-glib-devel |
libavahi-glib1 |
libavahi-gobject0 |
libavahi-ui-gtk3-0 |
libavahi-ui0 |
libdns_sd |
libhowl0 |
typelib-1_0-Avahi-0_6 |
libavahi-gobject-devel |