[3.5] avahi: Multicast DNS responds to unicast queries outside of local network (CVE-2017-6519)
avahi-daemon in Avahi through 0.6.32 inadvertently responds to IPv6
unicast queries with source addresses
that are not on-link, which allows remote attackers to cause a denial of
service (traffic amplification) or obtain potentially
sensitive information via port-5353 UDP packets. NOTE: this may overlap
CVE-2015-2809.
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-6519
(from redmine: issue id 9244, created on 2018-08-14, closed on 2019-05-04)
- Relations:
- copied_to #9241
- parent #9241