RedHat Security Advisory RHSA-2009:0013 Network Vulnerability

Summary

The remote host is missing updates announced in advisory RHSA-2009:0013. Hugo Dias discovered a denial of service flaw in avahi-daemon. A remote attacker on the same local area network (LAN) could send a specially-crafted mDNS (Multicast DNS) packet that would cause avahi-daemon to exit unexpectedly due to a failed assertion check. (CVE-2008-5081) All users are advised to upgrade to these updated packages, which contain a backported patch which resolves this issue. After installing the update, avahi-daemon will be restarted automatically.

Solution

Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date

References

http://rhn.redhat.com/errata/RHSA-2009-0013.html

Updated on 2017-03-28

Severity

Classification

CVE CVE-2008-5081

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

RedHat Security Advisory RHSA-2009:1451
RedHat Security Advisory RHSA-2009:0373
RedHat Update for abrt and libreport RHSA-2013:0215-01
RedHat Security Advisory RHSA-2009:1122
RedHat Security Advisory RHSA-2009:1625

Take action and discover your vulnerabilities