CVE-2021-36217

Name
CVE-2021-36217
Description
Avahi 0.8 allows a local denial of service (NULL pointer dereference and daemon crash) against avahi-daemon via the D-Bus interface or a "ping .local" command.
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://github.com/lathiat/avahi/commit/9d31939e55280a733d930b15ac9e4dda4497680c
MISC https://bugzilla.suse.com/show_bug.cgi?id=1188083

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:avahi:avahi:0.8:*:*:*:*:*:*:* avahi == None == 0.8

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
avahi edge-main 0.8-r5 Natanael Copa <ncopa@alpinelinux.org> fixed
avahi 3.14-main 0.8-r5 Natanael Copa <ncopa@alpinelinux.org> fixed
avahi 3.13-main 0.8-r4 Natanael Copa <ncopa@alpinelinux.org> fixed
avahi 3.12-main 0.8-r4 Natanael Copa <ncopa@alpinelinux.org> fixed