RedHat Security Advisory RHSA-2009:0013 Network Vulnerability

Summary

The remote host is missing updates announced in advisory RHSA-2009:0013. Hugo Dias discovered a denial of service flaw in avahi-daemon. A remote attacker on the same local area network (LAN) could send a specially-crafted mDNS (Multicast DNS) packet that would cause avahi-daemon to exit unexpectedly due to a failed assertion check. (CVE-2008-5081) All users are advised to upgrade to these updated packages, which contain a backported patch which resolves this issue. After installing the update, avahi-daemon will be restarted automatically.

Solution

Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date

References

http://rhn.redhat.com/errata/RHSA-2009-0013.html

Updated on 2017-03-28

Severity

Classification

CVE CVE-2008-5081
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

RedHat Security Advisory RHSA-2009:1689
RedHat Security Advisory RHSA-2009:1453
RedHat Security Advisory RHSA-2009:0436
RedHat Security Advisory RHSA-2009:0459
RedHat Update for 389-ds-base RHSA-2013:0503-03

Take action and discover your vulnerabilities