Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

Vulnerability Intelligence

Customers

SUSE-SU-2023:4910-1 | Mondoo Vulnerability Intelligence

Vulnerability IntelligenceSUSE-SU-2023:4910-1

SUSE-SU-2023:4910-1

UNKNOWN

Security update for avahi

Published Dec 19, 2023

Modified 2 years ago

Fix available

Details

This update for avahi fixes the following issues:

CVE-2023-38473: Fixed a reachable assertion when parsing a host name (bsc#1216419).
CVE-2023-38470: Fixed that each label is at least one byte long (bsc#1215947).

Affected Packages(20 packages)

avahi

SUSE Linux Enterprise Micro 5.2SUSE Manager Proxy 4.2SUSE Manager Server 4.2

Fixed in:

0.7-150100.3.29.1

libavahi-client3

SUSE Linux Enterprise Micro 5.2SUSE Manager Proxy 4.2SUSE Manager Server 4.2

Fixed in:

0.7-150100.3.29.1

libavahi-common3

SUSE Linux Enterprise Micro 5.2SUSE Manager Proxy 4.2SUSE Manager Server 4.2

Fixed in:

0.7-150100.3.29.1

libavahi-core7

SUSE Linux Enterprise Micro 5.2SUSE Manager Proxy 4.2SUSE Manager Server 4.2

Fixed in:

0.7-150100.3.29.1

avahi-compat-howl-devel

SUSE Manager Proxy 4.2SUSE Manager Server 4.2

Fixed in:

0.7-150100.3.29.1

avahi-compat-mDNSResponder-devel

SUSE Manager Proxy 4.2SUSE Manager Server 4.2

Fixed in:

0.7-150100.3.29.1

avahi-glib2

SUSE Manager Proxy 4.2SUSE Manager Server 4.2openSUSE Leap 15.4

Fixed in:

0.7-150100.3.29.1

avahi-lang

SUSE Manager Proxy 4.2SUSE Manager Server 4.2

Fixed in:

0.7-150100.3.29.1

avahi-utils

SUSE Manager Proxy 4.2SUSE Manager Server 4.2

Fixed in:

0.7-150100.3.29.1

libavahi-client3-32bit

SUSE Manager Proxy 4.2SUSE Manager Server 4.2

Fixed in:

0.7-150100.3.29.1

References

REPORT

https://bugzilla.suse.com/1215947

REPORT

https://bugzilla.suse.com/1216419

WEB

https://www.suse.com/security/cve/CVE-2023-38470

WEB

https://www.suse.com/security/cve/CVE-2023-38473

ADVISORY

https://www.suse.com/support/update/announcement/2023/suse-su-20234910-1/

Upstream

CVE-2023-38470 CVE-2023-38473

Ecosystems

SUSE Linux Enterprise Micro 5.2 SUSE Manager Proxy 4.2 SUSE Manager Server 4.2 openSUSE Leap 15.4

Timeline

PublishedDec 19, 2023

ModifiedDec 19, 2023