UbuntuUpdates.org

Package "avahi"

Name: avahi

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Service discover user interface for avahi
  • Avahi DNS configuration tool
  • Avahi GTK+ utilities
  • Python utility package for Avahi

Latest version: 0.7-3.1ubuntu1.3
Release: bionic (18.04)
Level: updates
Repository: universe

Links



Other versions of "avahi" in Bionic

Repository Area Version
base main 0.7-3.1ubuntu1
base universe 0.7-3.1ubuntu1
security main 0.7-3.1ubuntu1.3
security universe 0.7-3.1ubuntu1.3
updates main 0.7-3.1ubuntu1.3

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 0.7-3.1ubuntu1.3 2021-07-08 00:06:24 UTC

  avahi (0.7-3.1ubuntu1.3) bionic-security; urgency=medium

  * SECURITY UPDATE: DoS via infinite loop on local socket
    - debian/patches/CVE-2021-3468.patch: handle HUP event in
      avahi-daemon/simple-protocol.c.
    - CVE-2021-3468

 -- Marc Deslauriers <email address hidden> Tue, 06 Jul 2021 11:39:41 -0400

Source diff to previous version
CVE-2021-3468 A flaw was found in avahi in versions 0.6 up to 0.8. The event used to signal the termination of the client connection on the avahi Unix socket is no

Version: 0.7-3.1ubuntu1.2 2019-01-31 14:06:47 UTC

  avahi (0.7-3.1ubuntu1.2) bionic-security; urgency=medium

  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2017-6519-and-CVE-2018-1000845.patch:
      fix in avahi-core/server.c.
    - CVE-2017-6519
    - CVE-2018-1000845

 -- <email address hidden> (Leonidas S. Barbosa) Wed, 30 Jan 2019 12:32:00 -0300

Source diff to previous version
CVE-2017-6519 avahi-daemon in Avahi through 0.6.32 inadvertently responds to IPv6 unicast queries with source addresses that are not on-link, which allows remote a
CVE-2018-1000845 Avahi version 0.7 contains a Incorrect Access Control vulnerability in avahi-daemon that can result in Traffic reflection and amplification for DDoS

Version: 0.7-3.1ubuntu1.1 2018-09-06 09:06:38 UTC

  avahi (0.7-3.1ubuntu1.1) bionic; urgency=medium

  [ Trent Lloyd ]
  * debian/avahi-daemon-check-dns.sh: On some hardware, the 'host'
    command gets stuck and does not timeout as it should leaving this script
    and boot-up hanging indefinitely. Launch host with 'timeout' to kill it
    after 5 seconds in these cases as a workaround. (LP: #1752411)

 -- Christian Ehrhardt <email address hidden> Tue, 28 Aug 2018 11:37:21 +0200

1752411 bind9-host, avahi-daemon-check-dns.sh hang forever causes network connections to get stuck



About   -   Send Feedback to @ubuntu_updates