avahi: fix CVE-2024-52615 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Zhang Peng <peng.zhang1.cn@windriver.com>	2025-07-31 14:06:42 +0800
committer	Steve Sakoman <steve@sakoman.com>	2025-08-20 07:37:19 -0700
commit	0263c3dfa4fe1b26619f028a6a1c242e7e221dbf (patch)
tree	42998f84090c699817f4e549e386b884f7422983 /documentation/set_versions.py
parent	6f7e929ea6ea557f107c8ccffea69a7d73439591 (diff)
download	poky-0263c3dfa4fe1b26619f028a6a1c242e7e221dbf.tar.gz

avahi: fix CVE-2024-52615

CVE-2024-52615: A flaw was found in Avahi-daemon, which relies on fixed source ports for wide-area DNS queries. This issue simplifies attacks where malicious DNS responses are injected. Reference: [https://nvd.nist.gov/vuln/detail/CVE-2024-52615] [https://github.com/avahi/avahi/security/advisories/GHSA-x6vp-f33h-h32g] Upstream patches: [https://github.com/avahi/avahi/commit/4e2e1ea0908d7e6ad7f38ae04fdcdf2411f8b942] (From OE-Core rev: ec22ec26b3f40ed5e0d84d60c29d8c315cf72e23) Signed-off-by: Zhang Peng <peng.zhang1.cn@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'documentation/set_versions.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: