CVE-2023-38469

Опубликовано: 02 нояб. 2023

Источник: debian

EPSS Низкий

Описание

A vulnerability was found in Avahi, where a reachable assertion exists in avahi_dns_packet_append_record.

Пакет	Статус	Версия исправления	Релиз	Тип
avahi	fixed	0.8-14		package
avahi	fixed	0.8-10+deb12u1	bookworm	package
avahi	postponed		buster	package

https://github.com/avahi/avahi/issues/455
https://github.com/avahi/avahi/pull/500
Fixed by: https://github.com/avahi/avahi/commit/a337a1ba7d15853fb56deef1f464529af6e3a1cf (v0.9-rc1)
Tests: https://github.com/avahi/avahi/commit/c6cab87df290448a63323c8ca759baa516166237
https://www.openwall.com/lists/oss-security/2023/10/06/4

EPSS

Процентиль: 1%

0.00009

Низкий

CVE-2023-38469

CVSS3: 6.2

ubuntu

больше 1 года назад

A vulnerability was found in Avahi, where a reachable assertion exists in avahi_dns_packet_append_record.

CVE-2023-38469

CVSS3: 6.2

redhat

около 2 лет назад

A vulnerability was found in Avahi, where a reachable assertion exists in avahi_dns_packet_append_record.

CVE-2023-38469

CVSS3: 6.2

nvd

больше 1 года назад

A vulnerability was found in Avahi, where a reachable assertion exists in avahi_dns_packet_append_record.

CVE-2023-38469

CVSS3: 5.5

msrc

7 месяцев назад

Описание отсутствует

GHSA-cg96-q9gq-2pr7

CVSS3: 6.2

github

больше 1 года назад

A vulnerability was found in Avahi, where a reachable assertion exists in avahi_dns_packet_append_record.

EPSS

Процентиль: 1%

0.00009

Низкий