A security issue was found in avahi. The event used to signal the termination of the client connection on the avahi Unix socket is not correctly handled in the client_work function. Denial of service can be triggered by writing long lines to /run/avahi-daemon/socket resulting in an unresponsive busy-loop of the daemon.
A security issue was found in avahi. The event used to signal the termination of the client connection on the avahi Unix socket is not correctly handled in the client_work function. Denial of service can be triggered by writing long lines to /run/avahi-daemon/socket resulting in an unresponsive busy-loop of the daemon.
https://bugzilla.redhat.com/show_bug.cgi?id=1939614 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984938 https://github.com/lathiat/avahi/pull/330