package/avahi: add upstream security fix - buildroot

diff options

author	Artem Panfilov <panfilov.artyom@gmail.com>	2019-03-13 02:46:51 +0300
committer	Peter Korsgaard <peter@korsgaard.com>	2019-03-25 21:20:59 +0100
commit	853cff96797f36375de468384d008dda5ee7eba7 (patch)
tree	9c2ab2d2c5b5e63ece2908ce218eaa59034c144d /package/json-c/json-c.hash
parent	5c38c2ea3df412c763cc0e29e7e8fc142865ba14 (diff)
download	buildroot-853cff96797f36375de468384d008dda5ee7eba7.tar.gz buildroot-853cff96797f36375de468384d008dda5ee7eba7.zip

package/avahi: add upstream security fix

Fixes CVE-2017-6519: avahi-daemon in Avahi through 0.6.32 and 0.7 inadvertently responds to IPv6 unicast queries with source addresses that are not on-link, which allows remote attackers to cause a denial of service (traffic amplification) and may cause information leakage by obtaining potentially sensitive information from the responding device via port-5353 UDP packets. Signed-off-by: Artem Panfilov <panfilov.artyom@gmail.com> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com> (cherry picked from commit 1e17adf1c5ee1cecd747f84fff8f6261c1e8a476) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

Diffstat (limited to 'package/json-c/json-c.hash')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: