{"schema_version":"1.7.2","id":"OESA-2021-1273","modified":"2021-07-24T11:03:03Z","published":"2021-07-24T11:03:03Z","upstream":["CVE-2021-36217"],"summary":"avahi security update","details":"Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. This enables you to plug your laptop or computer into a network and instantly be able to view other people who you can chat with, find printers to print to or find files being shared.\r\n\r\nSecurity Fix(es):\r\n\r\nAvahi 0.8 allows a local denial of service (NULL pointer dereference and daemon crash) against avahi-daemon via the D-Bus interface or a \u0026quot;ping .local\u0026quot; command.(CVE-2021-36217)","affected":[{"package":{"ecosystem":"openEuler:20.03-LTS-SP1","name":"avahi","purl":"pkg:rpm/openEuler/avahi\u0026distro=openEuler-20.03-LTS-SP1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.8-5.oe1"}]}],"ecosystem_specific":{"aarch64":["avahi-compat-libdns_sd-devel-0.8-5.oe1.aarch64.rpm","avahi-dnsconfd-0.8-5.oe1.aarch64.rpm","avahi-debugsource-0.8-5.oe1.aarch64.rpm","avahi-ui-0.8-5.oe1.aarch64.rpm","avahi-0.8-5.oe1.aarch64.rpm","avahi-compat-libdns_sd-0.8-5.oe1.aarch64.rpm","avahi-tools-0.8-5.oe1.aarch64.rpm","avahi-libs-0.8-5.oe1.aarch64.rpm","avahi-devel-0.8-5.oe1.aarch64.rpm","avahi-ui-devel-0.8-5.oe1.aarch64.rpm","avahi-compat-howl-0.8-5.oe1.aarch64.rpm","avahi-ui-gtk3-0.8-5.oe1.aarch64.rpm","avahi-gobject-0.8-5.oe1.aarch64.rpm","avahi-glib-0.8-5.oe1.aarch64.rpm","avahi-compat-howl-devel-0.8-5.oe1.aarch64.rpm","avahi-debuginfo-0.8-5.oe1.aarch64.rpm"],"noarch":["avahi-help-0.8-5.oe1.noarch.rpm"],"src":["avahi-0.8-5.oe1.src.rpm"],"x86_64":["avahi-0.8-5.oe1.x86_64.rpm","avahi-libs-0.8-5.oe1.x86_64.rpm","avahi-ui-0.8-5.oe1.x86_64.rpm","avahi-debugsource-0.8-5.oe1.x86_64.rpm","avahi-gobject-0.8-5.oe1.x86_64.rpm","avahi-compat-libdns_sd-devel-0.8-5.oe1.x86_64.rpm","avahi-debuginfo-0.8-5.oe1.x86_64.rpm","avahi-ui-devel-0.8-5.oe1.x86_64.rpm","avahi-dnsconfd-0.8-5.oe1.x86_64.rpm","avahi-devel-0.8-5.oe1.x86_64.rpm","avahi-compat-howl-0.8-5.oe1.x86_64.rpm","avahi-tools-0.8-5.oe1.x86_64.rpm","avahi-glib-0.8-5.oe1.x86_64.rpm","avahi-compat-libdns_sd-0.8-5.oe1.x86_64.rpm","avahi-compat-howl-devel-0.8-5.oe1.x86_64.rpm","avahi-ui-gtk3-0.8-5.oe1.x86_64.rpm"]}},{"package":{"ecosystem":"openEuler:20.03-LTS-SP2","name":"avahi","purl":"pkg:rpm/openEuler/avahi\u0026distro=openEuler-20.03-LTS-SP2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.8-5.oe1"}]}],"ecosystem_specific":{"aarch64":["avahi-compat-libdns_sd-devel-0.8-5.oe1.aarch64.rpm","avahi-dnsconfd-0.8-5.oe1.aarch64.rpm","avahi-debugsource-0.8-5.oe1.aarch64.rpm","avahi-ui-0.8-5.oe1.aarch64.rpm","avahi-0.8-5.oe1.aarch64.rpm","avahi-compat-libdns_sd-0.8-5.oe1.aarch64.rpm","avahi-tools-0.8-5.oe1.aarch64.rpm","avahi-libs-0.8-5.oe1.aarch64.rpm","avahi-devel-0.8-5.oe1.aarch64.rpm","avahi-ui-devel-0.8-5.oe1.aarch64.rpm","avahi-compat-howl-0.8-5.oe1.aarch64.rpm","avahi-ui-gtk3-0.8-5.oe1.aarch64.rpm","avahi-gobject-0.8-5.oe1.aarch64.rpm","avahi-glib-0.8-5.oe1.aarch64.rpm","avahi-compat-howl-devel-0.8-5.oe1.aarch64.rpm","avahi-debuginfo-0.8-5.oe1.aarch64.rpm"],"noarch":["avahi-help-0.8-5.oe1.noarch.rpm"],"src":["avahi-0.8-5.oe1.src.rpm"],"x86_64":["avahi-0.8-5.oe1.x86_64.rpm","avahi-libs-0.8-5.oe1.x86_64.rpm","avahi-ui-0.8-5.oe1.x86_64.rpm","avahi-debugsource-0.8-5.oe1.x86_64.rpm","avahi-gobject-0.8-5.oe1.x86_64.rpm","avahi-compat-libdns_sd-devel-0.8-5.oe1.x86_64.rpm","avahi-debuginfo-0.8-5.oe1.x86_64.rpm","avahi-ui-devel-0.8-5.oe1.x86_64.rpm","avahi-dnsconfd-0.8-5.oe1.x86_64.rpm","avahi-devel-0.8-5.oe1.x86_64.rpm","avahi-compat-howl-0.8-5.oe1.x86_64.rpm","avahi-tools-0.8-5.oe1.x86_64.rpm","avahi-glib-0.8-5.oe1.x86_64.rpm","avahi-compat-libdns_sd-0.8-5.oe1.x86_64.rpm","avahi-compat-howl-devel-0.8-5.oe1.x86_64.rpm","avahi-ui-gtk3-0.8-5.oe1.x86_64.rpm"]}}],"references":[{"type":"ADVISORY","url":"https://openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2021-1273"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-36217"}],"database_specific":{"severity":"Medium"}}