Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 476
Alerts This Week
Warning Icon 1 476

RedHat Enterprise 5 RHSA-2010:0528-01 Moderate: Avahi DoS Risk

red hat
Calendar Grey July 13, 2010
Dist Redhat Esm H88
Employ the latest avahi updates to address moderate security vulnerabilities on Red Hat Enterprise Linux 5 efficiently.
Updated avahi packages that fix two security issues are now available for Red Hat Enterprise Linux 5

Solution

Before applying this update, make sure all previously-released errata relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at

Summary

Avahi is an implementation of the DNS Service Discovery and Multicast DNS specifications for Zero Configuration Networking. It facilitates service discovery on a local network. Avahi and Avahi-aware applications allow you to plug your computer into a network and, with no configuration, view other people to chat with, view printers to print to, and find shared files on other computers.
A flaw was found in the way the Avahi daemon (avahi-daemon) processed Multicast DNS (mDNS) packets with corrupted checksums. An attacker on the local network could use this flaw to cause avahi-daemon on a target system to exit unexpectedly via specially-crafted mDNS packets. (CVE-2010-2244)
A flaw was found in the way avahi-daemon processed incoming unicast mDNS messages. If the mDNS reflector were enabled on a system, an attacker on the local network could send a specially-crafted unicast mDNS message to that system, resulting in its avahi-daemon flooding the network with a multicast packet storm, and consuming a large amount of CPU. Note: The mDNS reflector is disabled by default. (CVE-2009-0758)
All users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the update, avahi-daemon will be restarted automatically.

References

https://access.redhat.com/security/cve/CVE-2009-0758 https://access.redhat.com/security/cve/CVE-2010-2244 https://access.redhat.com/security/updates/classification#moderate

Package List

Red Hat Enterprise Linux Desktop (v. 5 client):
Source:
i386: avahi-0.6.16-9.el5_5.i386.rpm avahi-compat-howl-0.6.16-9.el5_5.i386.rpm avahi-compat-howl-devel-0.6.16-9.el5_5.i386.rpm avahi-compat-libdns_sd-0.6.16-9.el5_5.i386.rpm avahi-compat-libdns_sd-devel-0.6.16-9.el5_5.i386.rpm avahi-debuginfo-0.6.16-9.el5_5.i386.rpm avahi-devel-0.6.16-9.el5_5.i386.rpm avahi-glib-0.6.16-9.el5_5.i386.rpm avahi-glib-devel-0.6.16-9.el5_5.i386.rpm avahi-qt3-0.6.16-9.el5_5.i386.rpm avahi-qt3-devel-0.6.16-9.el5_5.i386.rpm avahi-tools-0.6.16-9.el5_5.i386.rpm
x86_64: avahi-0.6.16-9.el5_5.i386.rpm avahi-0.6.16-9.el5_5.x86_64.rpm avahi-compat-howl-0.6.16-9.el5_5.i386.rpm avahi-compat-howl-0.6.16-9.el5_5.x86_64.rpm avahi-compat-libdns_sd-0.6.16-9.el5_5.i386.rpm avahi-compat-libdns_sd-0.6.16-9.el5_5.x86_64.rpm avahi-debuginfo-0.6.16-9.el5_5.i386.rpm avahi-debuginfo-0.6.16-9.el5_5.x86_64.rpm avahi-glib-0.6.16-9.el5_5.i386.rpm avahi-glib-0.6.16-9.el5_5.x86_64.rpm avahi-qt3-0.6.16-9.el5_5.i386.rpm avahi-qt3-0.6.16-9.el5_5.x86_64.rpm avahi-tools-0.6.16-9.el5_5.x86_64.rpm
RHEL Desktop Workstation (v. 5 client):
Source:
i386: avahi-compat-howl-devel-0.6.16-9.el5_5.i386.rpm avahi-compat-libdns_sd-devel-0.6.16-9.el5_5.i386.rpm avahi-debuginfo-0.6.16-9.el5_5.i386.rpm avahi-devel-0.6.16-9.el5_5.i386.rpm

Read the Full Advisory


Advisory ID: RHSA-2010:0528-01
Product: Red Hat Enterprise Linux
Issue date: 2010-07-13

Topic

Updated avahi packages that fix two security issues are now available forRed Hat Enterprise Linux 5.The Red Hat Security Response Team has rated this update as having moderatesecurity impact. Common Vulnerability Scoring System (CVSS) base scores,which give detailed severity ratings, are available for each vulnerabilityfrom the CVE links in the References section.

Relevant Releases Architectures

RHEL Desktop Workstation (v. 5 client) - i386, x86_64

Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64

Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64

Bugs Fixed

488314 - CVE-2009-0758 avahi: remote DoS via legacy unicast mDNS queries

607293 - CVE-2010-2244 avahi: assertion failure after receiving a packet with corrupted checksum

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.