CVE-2021-3468
Description
A flaw was found in avahi in versions 0.6 up to 0.8. The event used to signal the termination of the client connection on the avahi Unix socket is not correctly handled in the client_work function, allowing a local attacker to trigger an infinite loop. The highest threat from this vulnerability is to the availability of the avahi service, which becomes unresponsive after this flaw is triggered.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.01
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) avahi-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) avahi-debuginfo-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) avahi-debuginfo-32bit-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) avahi-debugsource-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) avahi-glib2-debugsource-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) avahi-lang-0.6.32-32.15.1.noarch.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) avahi-utils-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) avahi-utils-debuginfo-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libavahi-client3-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libavahi-client3-32bit-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libavahi-client3-debuginfo-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libavahi-client3-debuginfo-32bit-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libavahi-common3-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libavahi-common3-32bit-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libavahi-common3-debuginfo-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libavahi-common3-debuginfo-32bit-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libavahi-core7-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libavahi-core7-debuginfo-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libavahi-glib1-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libavahi-glib1-32bit-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libavahi-glib1-debuginfo-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libavahi-glib1-debuginfo-32bit-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libdns_sd-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libdns_sd-32bit-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libdns_sd-debuginfo-0.6.32-32.15.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1494-1(SUSE Linux Enterprise Server 12-SP5 ) libdns_sd-debuginfo-32bit-0.6.32-32.15.1.x86_64.rpm | Linux |
| IPv4LL network address configuration daemon (USN-5008-1) avahi-daemon_0.7-4ubuntu7.1_i386.deb | Linux |
| IPv4LL network address configuration daemon (USN-5008-1) avahi-daemon_0.7-4ubuntu7.1_amd64.deb | Linux |
| IPv4LL network address configuration daemon (USN-5008-1) avahi-daemon_0.8-3ubuntu1.1_i386.deb | Linux |
| IPv4LL network address configuration daemon (USN-5008-1) avahi-daemon_0.8-3ubuntu1.1_amd64.deb | Linux |
| IPv4LL network address configuration daemon (USN-5008-1) avahi-daemon_0.8-5ubuntu3.1_i386.deb | Linux |
| IPv4LL network address configuration daemon (USN-5008-1) avahi-daemon_0.8-5ubuntu3.1_amd64.deb | Linux |
| IPv4LL network address configuration daemon (USN-5008-1) avahi-daemon_0.7-3.1ubuntu1.3_i386.deb | Linux |
| IPv4LL network address configuration daemon (USN-5008-1) avahi-daemon_0.7-3.1ubuntu1.3_amd64.deb | Linux |
| IPv4LL network address configuration daemon (USN-5008-1) libavahi-core7_0.7-4ubuntu7.1_i386.deb | Linux |
| IPv4LL network address configuration daemon (USN-5008-1) libavahi-core7_0.7-4ubuntu7.1_amd64.deb | Linux |
| IPv4LL network address configuration daemon (USN-5008-1) libavahi-core7_0.8-3ubuntu1.1_i386.deb | Linux |
| IPv4LL network address configuration daemon (USN-5008-1) libavahi-core7_0.8-3ubuntu1.1_amd64.deb | Linux |
| IPv4LL network address configuration daemon (USN-5008-1) libavahi-core7_0.8-5ubuntu3.1_i386.deb | Linux |
| IPv4LL network address configuration daemon (USN-5008-1) libavahi-core7_0.8-5ubuntu3.1_amd64.deb | Linux |
| IPv4LL network address configuration daemon (USN-5008-1) libavahi-core7_0.7-3.1ubuntu1.3_i386.deb | Linux |
| IPv4LL network address configuration daemon (USN-5008-1) libavahi-core7_0.7-3.1ubuntu1.3_amd64.deb | Linux |
| Avahi update (ELSA-2023-6707) avahi-0.8-15.el9.i686.rpm | Linux |
| Avahi update (ELSA-2023-6707) avahi-0.8-15.el9.x86_64.rpm | Linux |
| Avahi-glib update (ELSA-2023-6707) avahi-glib-0.8-15.el9.i686.rpm | Linux |
| Avahi-glib update (ELSA-2023-6707) avahi-glib-0.8-15.el9.x86_64.rpm | Linux |
| Avahi-libs update (ELSA-2023-6707) avahi-libs-0.8-15.el9.i686.rpm | Linux |
| Avahi-libs update (ELSA-2023-6707) avahi-libs-0.8-15.el9.x86_64.rpm | Linux |
| Avahi-tools update (ELSA-2023-6707) avahi-tools-0.8-15.el9.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-autoipd-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-autoipd-debuginfo-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-autoipd-debuginfo-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-compat-howl-debuginfo-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-compat-howl-debuginfo-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-compat-libdns_sd-debuginfo-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-compat-libdns_sd-debuginfo-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-debuginfo-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-debuginfo-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-debugsource-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-debugsource-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-dnsconfd-debuginfo-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-dnsconfd-debuginfo-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-glib-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-glib-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-glib-debuginfo-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-glib-debuginfo-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-gobject-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-gobject-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-gobject-debuginfo-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-gobject-debuginfo-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-libs-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-libs-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-libs-debuginfo-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-libs-debuginfo-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-tools-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-tools-debuginfo-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-tools-debuginfo-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-ui-debuginfo-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-ui-debuginfo-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-ui-gtk3-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-ui-gtk3-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-ui-gtk3-debuginfo-0.7-21.el8_9.1.i686.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update avahi-ui-gtk3-debuginfo-0.7-21.el8_9.1.x86_64.rpm | Linux |
| (RHSA-2023:7836)Moderate: security update python3-avahi-0.7-21.el8_9.1.x86_64.rpm | Linux |
| Avahi update (ELSA-2023-7836) avahi-0.7-21.el8_9.1.x86_64.rpm | Linux |
| Avahi-autoipd update (ELSA-2023-7836) avahi-autoipd-0.7-21.el8_9.1.x86_64.rpm | Linux |
| Avahi-glib update (ELSA-2023-7836) avahi-glib-0.7-21.el8_9.1.i686.rpm | Linux |
| Avahi-glib update (ELSA-2023-7836) avahi-glib-0.7-21.el8_9.1.x86_64.rpm | Linux |
| Avahi-gobject update (ELSA-2023-7836) avahi-gobject-0.7-21.el8_9.1.i686.rpm | Linux |
| Avahi-gobject update (ELSA-2023-7836) avahi-gobject-0.7-21.el8_9.1.x86_64.rpm | Linux |
| Avahi-libs update (ELSA-2023-7836) avahi-libs-0.7-21.el8_9.1.i686.rpm | Linux |
| Avahi-libs update (ELSA-2023-7836) avahi-libs-0.7-21.el8_9.1.x86_64.rpm | Linux |
| Avahi-tools update (ELSA-2023-7836) avahi-tools-0.7-21.el8_9.1.x86_64.rpm | Linux |
| Avahi-ui-gtk3 update (ELSA-2023-7836) avahi-ui-gtk3-0.7-21.el8_9.1.i686.rpm | Linux |
| Avahi-ui-gtk3 update (ELSA-2023-7836) avahi-ui-gtk3-0.7-21.el8_9.1.x86_64.rpm | Linux |
| Python3-avahi update (ELSA-2023-7836) python3-avahi-0.7-21.el8_9.1.x86_64.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) avahi-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libhowl0-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libdns_sd-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) avahi-lang-0.7-3.9.1.noarch_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) avahi-utils-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-ui0-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Desktop Applications 15-SP3 ) avahi-autoipd-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-core7-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-devel-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-glib1-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Desktop Applications 15-SP3 ) avahi-debuginfo-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Desktop Applications 15-SP3 ) avahi-utils-gtk-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-client3-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-common3-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Desktop Applications 15-SP3 ) avahi-debugsource-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-gobject0-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-ui-gtk3-0-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libhowl0-debuginfo-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-glib-devel-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libdns_sd-debuginfo-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) avahi-32bit-debuginfo-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) avahi-utils-debuginfo-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) typelib-1_0-Avahi-0_6-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-client3-32bit-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-common3-32bit-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Desktop Applications 15-SP3 ) libavahi-gobject-devel-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-ui0-debuginfo-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Desktop Applications 15-SP3 ) avahi-autoipd-debuginfo-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) avahi-compat-howl-devel-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Desktop Applications 15-SP3 ) avahi-glib2-debugsource-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-core7-debuginfo-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-glib1-debuginfo-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Desktop Applications 15-SP3 ) avahi-utils-gtk-debuginfo-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-client3-debuginfo-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-common3-debuginfo-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-gobject0-debuginfo-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-ui-gtk3-0-debuginfo-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) avahi-compat-mDNSResponder-devel-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-client3-32bit-debuginfo-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
| SUSE-SU-2021:1493-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libavahi-common3-32bit-debuginfo-0.7-3.9.1.x86_64_15_SP3.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234