CVE-2023-38472
published 2023-11-02CVE-2023-38472: A vulnerability was found in Avahi. A reachable assertion exists in the avahi_rdata_parse() function.
medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
A vulnerability was found in Avahi. A reachable assertion exists in the avahi_rdata_parse() function.
Affected
20 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| avahi | avahi | < 0.9 | 0.9 |
| avahi | avahi | >= 0 < 0.8-5+deb11u3 | 0.8-5+deb11u3 |
| avahi | avahi | >= 0 < 0.8-10+deb12u1 | 0.8-10+deb12u1 |
| avahi | avahi | >= 0 < 0.8-14 | 0.8-14 |
| avahi | avahi | >= 0 < 0.8-14 | 0.8-14 |
| avahi | avahi | >= 0 < 0.7-4ubuntu7.3 | 0.7-4ubuntu7.3 |
| avahi | avahi | >= 0 < 0.8-5ubuntu5.2 | 0.8-5ubuntu5.2 |
| avahi | avahi | >= 0 < 0.6.31-4ubuntu1.3+esm3 | 0.6.31-4ubuntu1.3+esm3 |
| avahi | avahi | >= 0 < 0.6.32~rc+dfsg-1ubuntu2.3+esm3 | 0.6.32~rc+dfsg-1ubuntu2.3+esm3 |
| avahi | avahi | >= 0 < 0.7-3.1ubuntu1.3+esm2 | 0.7-3.1ubuntu1.3+esm2 |
| debian | avahi | < avahi 0.8-10+deb12u1 (bookworm) | avahi 0.8-10+deb12u1 (bookworm) |
| msrc | azl3_avahi_0.8-4_on_azure_linux_3.0 | — | — |
| msrc | azl3_avahi_0.8-5_on_azure_linux_3.0 | — | — |
| msrc | azure_linux_3.0_arm | — | — |
| msrc | azure_linux_3.0_x64 | — | — |
| msrc | cbl2_avahi_0.8-3_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
| redhat | enterprise_linux | — | — |
| redhat | enterprise_linux | — | — |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
osv5.5MEDIUM