CVE-2021-3502 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Low
Remote	No
Type	Denial of service
Description	A security issue was found in avahi. A reachable assertion is present in avahi_s_host_name_resolver_start function allowing a local attacker to crash the avahi service by requesting hostname resolutions through the avahi socket or dbus methods for invalid hostnames.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-2341	avahi	0.8+20+gd1e71b3-1	0.8+22+gfd482a7-1	Low	Fixed

References
https://bugzilla.redhat.com/show_bug.cgi?id=1946914 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986018 https://github.com/lathiat/avahi/issues/338 https://github.com/lathiat/avahi/pull/324 https://github.com/lathiat/avahi/commit/9d31939e55280a733d930b15ac9e4dda4497680c

References

https://bugzilla.redhat.com/show_bug.cgi?id=1946914
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986018
https://github.com/lathiat/avahi/issues/338
https://github.com/lathiat/avahi/pull/324
https://github.com/lathiat/avahi/commit/9d31939e55280a733d930b15ac9e4dda4497680c