avahi: fix CVE-2024-52615 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Zhang Peng <peng.zhang1.cn@windriver.com>	2025-07-31 14:06:42 +0800
committer	Steve Sakoman <steve@sakoman.com>	2025-08-08 06:30:55 -0700
commit	9e416e05f6af7a97d0a589dbc687f743180e2bb0 (patch)
tree	50ab59651292fd95f770f55830d08b86d05bcbcf /documentation/conf.py
parent	f29a38bdcb908a75b8314b500802ffa651f976ed (diff)
download	poky-9e416e05f6af7a97d0a589dbc687f743180e2bb0.tar.gz

avahi: fix CVE-2024-52615

CVE-2024-52615: A flaw was found in Avahi-daemon, which relies on fixed source ports for wide-area DNS queries. This issue simplifies attacks where malicious DNS responses are injected. Reference: [https://nvd.nist.gov/vuln/detail/CVE-2024-52615] [https://github.com/avahi/avahi/security/advisories/GHSA-x6vp-f33h-h32g] Upstream patches: [https://github.com/avahi/avahi/commit/4e2e1ea0908d7e6ad7f38ae04fdcdf2411f8b942] (From OE-Core rev: 7bd9fee6d654326ea921b51113de99f793e11545) Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'documentation/conf.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: