avahi: fix CVE-2024-52615 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Zhang Peng <peng.zhang1.cn@windriver.com>	2025-07-31 14:06:42 +0800
committer	Steve Sakoman <steve@sakoman.com>	2025-08-13 08:42:57 -0700
commit	49a7cd5a14469b12a132d610f76e86e138e802a7 (patch)
tree	a07b871254a193ba577926ee946fd5066f49b92c /documentation/conf.py
parent	b642d6a4a93a23d5b99886844ff7b224aa7e13bf (diff)
download	poky-49a7cd5a14469b12a132d610f76e86e138e802a7.tar.gz

avahi: fix CVE-2024-52615

CVE-2024-52615: A flaw was found in Avahi-daemon, which relies on fixed source ports for wide-area DNS queries. This issue simplifies attacks where malicious DNS responses are injected. Reference: [https://nvd.nist.gov/vuln/detail/CVE-2024-52615] [https://github.com/avahi/avahi/security/advisories/GHSA-x6vp-f33h-h32g] Upstream patches: [https://github.com/avahi/avahi/commit/4e2e1ea0908d7e6ad7f38ae04fdcdf2411f8b942] (From OE-Core rev: 455f3a936874e62b57d50cc1b84dc816e35312af) Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'documentation/conf.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: