Release Info

Advisory: CLSA-2025:1743675732

OS: AlmaLinux 9.2 ESU

Public date: 2025-04-03 10:22:15

Project: avahi

Version: 0.8-12.el9_2.1.tuxcare.els1

Errata link: https://errata.tuxcare.com/els_os/almalinux9.2esu/CLSA-2025-1743675732.html

Changelog

- CVE-2021-3468: handle termination event on avahi Unix socket to prevent infinite loop - CVE-2023-1981: prevent avahi daemon crash by emitting an error if the requested D-Bus service is not found - CVE-2021-3502: fix avahi-daemon crashing from NULL pointer assertions - CVE-2023-38469: reject overly long TXT resource records to prevent reachable assertion in avahi_dns_packet_append_record - CVE-2023-38470: ensure each label is at least one byte long in avahi_normalize_name() to prevent reachable assertion in avahi_escape_label() - CVE-2023-38471: fix creating invalid escape sequence in dbus_set_host_name function - CVE-2023-38472: ensure avahi_rdata_parse() has valid rdata before parsing to prevent reachable assertion - CVE-2023-38473: normalize input in avahi_alternative_host_name() to prevent reachable assertion due to unescaped dot handling

Update

Update command: dnf update avahi*

Packages list

avahi-0.8-12.el9_2.1.tuxcare.els1.i686.rpm avahi-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm avahi-autoipd-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm avahi-compat-howl-0.8-12.el9_2.1.tuxcare.els1.i686.rpm avahi-compat-howl-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm avahi-compat-howl-devel-0.8-12.el9_2.1.tuxcare.els1.i686.rpm avahi-compat-howl-devel-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm avahi-compat-libdns_sd-0.8-12.el9_2.1.tuxcare.els1.i686.rpm avahi-compat-libdns_sd-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm avahi-compat-libdns_sd-devel-0.8-12.el9_2.1.tuxcare.els1.i686.rpm avahi-compat-libdns_sd-devel-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm avahi-devel-0.8-12.el9_2.1.tuxcare.els1.i686.rpm avahi-devel-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm avahi-dnsconfd-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm avahi-glib-0.8-12.el9_2.1.tuxcare.els1.i686.rpm avahi-glib-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm avahi-glib-devel-0.8-12.el9_2.1.tuxcare.els1.i686.rpm avahi-glib-devel-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm avahi-gobject-0.8-12.el9_2.1.tuxcare.els1.i686.rpm avahi-gobject-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm avahi-gobject-devel-0.8-12.el9_2.1.tuxcare.els1.i686.rpm avahi-gobject-devel-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm avahi-libs-0.8-12.el9_2.1.tuxcare.els1.i686.rpm avahi-libs-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm avahi-tools-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm avahi-ui-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm avahi-ui-devel-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm avahi-ui-gtk3-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm avahi-ui-tools-0.8-12.el9_2.1.tuxcare.els1.x86_64.rpm

CVEs

CVE-2023-38471
CVE-2023-38470
CVE-2023-38469
CVE-2023-1981
CVE-2023-38473
CVE-2021-3468
CVE-2021-3502
CVE-2023-38472