diff options
author | Martin Wilke <miwi@FreeBSD.org> | 2011-03-14 16:25:12 +0000 |
---|---|---|
committer | Martin Wilke <miwi@FreeBSD.org> | 2011-03-14 16:25:12 +0000 |
commit | e727e91d3e40abb6432481b0eb059db596cf969e (patch) | |
tree | 5c254e23872673bdfd604c8de1d5244a62569015 /security | |
parent | Fix date in avahi entry. (diff) |
- Add correct infos to the avahi issus
- Add url to original advisory
Notes
Notes:
svn path=/head/; revision=270891
Diffstat (limited to 'security')
-rw-r--r-- | security/vuxml/vuln.xml | 14 |
1 files changed, 9 insertions, 5 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index c7ee8831b612..8ccf7bb7d253 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -52,19 +52,23 @@ Note: Please add new entries to the beginning of this file. <description> <body xmlns="http://www.w3.org/1999/xhtml"> <p>Avahi developers reports:</p> - <blockquote cite="http://avahi.org/milestone/Avahi 0.6.29"> - <p>Fix denial of services attack (CVE-2011-1002), which is caused - by incorrect fix for CVE=2010-2244.</p> + <blockquote cite="http://secunia.com/advisories/43361/"> + <p>A vulnerability has been reported in Avahi, which can be exploited + by malicious people to cause a DoS (Denial of Service). + The vulnerability is caused due to an error when processing certain + UDP packets, which can be exploited to trigger an infinite loop by + e.g. sending an empty packet to port 5353/UDP.</p> </blockquote> </body> </description> <references> <cvename>CVE-2011-1002</cvename> <cvename>CVE-2010-2244</cvename> - <url>http://avahi.org/milestone/Avahi 0.6.29</url> + <url>http://secunia.com/advisories/43361/</url> + <url>https://bugzilla.redhat.com/show_bug.cgi?id=667187</url> </references> <dates> - <discovery>2011-03-09</discovery> + <discovery>2011-02-21</discovery> <entry>2011-03-13</entry> </dates> </vuln> |