[Apollo] Advisories Statistics light light Login

RLSA-2023:7836

Security Mirrored from RHSA-2023:7836
Issued at: 2024-01-09
Updated at: 2024-01-09

Synopsis

Moderate: avahi security update



Description

Avahi is an implementation of the DNS Service Discovery and Multicast DNS specifications for Zero Configuration Networking. It facilitates service discovery on a local network. Avahi and Avahi-aware applications allow you to plug your computer into a network and, with no configuration, view other people to chat with, view printers to print with, and find shared files on other computers.

Security Fix(es):

* avahi: Local DoS by event-busy-loop from writing long lines to /run/avahi-daemon/socket (CVE-2021-3468)

* avahi: Reachable assertion in avahi_dns_packet_append_record (CVE-2023-38469)

* avahi: Reachable assertion in avahi_escape_label (CVE-2023-38470)

* avahi: Reachable assertion in dbus_set_host_name (CVE-2023-38471)

* avahi: Reachable assertion in avahi_rdata_parse (CVE-2023-38472)

* avahi: Reachable assertion in avahi_alternative_host_name (CVE-2023-38473)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 8 aarch64

Fixes

1939614 2191687 2191690 2191691 2191692 2191694

CVEs

CVE-2021-3468 CVE-2023-38469 CVE-2023-38470 CVE-2023-38471 CVE-2023-38472 CVE-2023-38473

Affected packages

Rocky Linux 8 aarch64 - BaseOS

avahi-0:0.7-21.el8_9.1.aarch64.rpm avahi-0:0.7-21.el8_9.1.src.rpm avahi-autoipd-0:0.7-21.el8_9.1.aarch64.rpm avahi-autoipd-debuginfo-0:0.7-21.el8_9.1.aarch64.rpm avahi-debuginfo-0:0.7-21.el8_9.1.aarch64.rpm avahi-debugsource-0:0.7-21.el8_9.1.aarch64.rpm avahi-glib-0:0.7-21.el8_9.1.aarch64.rpm avahi-glib-debuginfo-0:0.7-21.el8_9.1.aarch64.rpm avahi-gobject-0:0.7-21.el8_9.1.aarch64.rpm avahi-gobject-debuginfo-0:0.7-21.el8_9.1.aarch64.rpm avahi-libs-0:0.7-21.el8_9.1.aarch64.rpm avahi-libs-debuginfo-0:0.7-21.el8_9.1.aarch64.rpm python3-avahi-0:0.7-21.el8_9.1.aarch64.rpm

Rocky Linux 8 aarch64 - PowerTools

avahi-compat-howl-0:0.7-21.el8_9.1.aarch64.rpm avahi-compat-howl-debuginfo-0:0.7-21.el8_9.1.aarch64.rpm avahi-compat-howl-devel-0:0.7-21.el8_9.1.aarch64.rpm avahi-compat-libdns_sd-0:0.7-21.el8_9.1.aarch64.rpm avahi-compat-libdns_sd-debuginfo-0:0.7-21.el8_9.1.aarch64.rpm avahi-compat-libdns_sd-devel-0:0.7-21.el8_9.1.aarch64.rpm avahi-devel-0:0.7-21.el8_9.1.aarch64.rpm avahi-glib-devel-0:0.7-21.el8_9.1.aarch64.rpm avahi-gobject-devel-0:0.7-21.el8_9.1.aarch64.rpm avahi-ui-0:0.7-21.el8_9.1.aarch64.rpm avahi-ui-debuginfo-0:0.7-21.el8_9.1.aarch64.rpm avahi-ui-devel-0:0.7-21.el8_9.1.aarch64.rpm

Rocky Linux 8 aarch64 - AppStream

avahi-tools-0:0.7-21.el8_9.1.aarch64.rpm avahi-tools-debuginfo-0:0.7-21.el8_9.1.aarch64.rpm avahi-ui-gtk3-0:0.7-21.el8_9.1.aarch64.rpm avahi-ui-gtk3-debuginfo-0:0.7-21.el8_9.1.aarch64.rpm