Lucene search

Gentoo FoundationGLSA-200611-13

HistoryNov 20, 2006 - 12:00 a.m.

Avahi: "netlink" message vulnerability

2006-11-2000:00:00

Gentoo Foundation

security.gentoo.org

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

EPSS

Percentile

10.1%

JSON

Background

Avahi is a system that facilitates service discovery on a local network.

Description

Avahi does not check that the netlink messages come from the kernel instead of a user-space process.

Impact

A local attacker could exploit this vulnerability by crafting malicious netlink messages and trick Avahi to react to fake network changes. This could lead users to connect to untrusted services without knowing.

Workaround

There is no known workaround at this time.

Resolution

All Avahi users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose "&gt;=net-dns/avahi-0.6.15"

OSVersionArchitecturePackageVersionFilename
Gentooanyallnet-dns/avahi< 0.6.15UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Gentoo	any	all	net-dns/avahi	< 0.6.15	UNKNOWN

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

EPSS

Percentile

10.1%

JSON

Related for GLSA-200611-13