Oval Definition:oval:org.opensuse.security:def:76193
Revision Date:2021-06-03Version:1
Title:Security update for avahi (Important)
Description:

This update for avahi fixes the following issues:

- CVE-2021-3468: avoid infinite loop by handling HUP event in client_work (bsc#1184521). - CVE-2021-26720: drop privileges when invoking avahi-daemon-check-dns.sh (bsc#1180827) - Update avahi-daemon-check-dns.sh from Debian. Our previous version relied on ifconfig, route, and init.d. - Add sudo to requires: used to drop privileges.
Family:unixClass:patch
Status:Reference(s):1180827
1184521
CVE-2021-26720
CVE-2021-3468
Platform(s):SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3
Product(s):
BACK