Fix CVE-2021-3468 in Avahi
|Reported by:||Douglas R. Reno||Owned by:||Douglas R. Reno|
Arch has the following vulnerability noted in Avahi:
A security issue was found in avahi. The event used to signal the termination of the client connection on the avahi Unix socket is not correctly handled in the client_work function. Denial of service can be triggered by writing long lines to /run/avahi-daemon/socket resulting in an unresponsive busy-loop of the daemon.
Unfortunately, this can be exploited via network-based printers.
Change History (2)
Note: See TracTickets for help on using tickets.