Nixpkgs Security Tracker

Login with GitHub

Suggestion detail

Untriaged

Permalink CVE-2023-38471

6.2 MEDIUM

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 6 months ago

Reachable assertion in dbus_set_host_name

A vulnerability was found in Avahi. A reachable assertion exists in the dbus_set_host_name function.

References

https://access.redhat.com/security/cve/CVE-2023-38471 x_refsource_REDHAT vdb-entry
RHBZ#2191691 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-38471 x_refsource_REDHAT vdb-entry x_transferred
RHBZ#2191691 issue-tracking x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-38471 x_refsource_REDHAT vdb-entry
RHBZ#2191691 issue-tracking x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-38471 x_refsource_REDHAT vdb-entry x_transferred
RHBZ#2191691 issue-tracking x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-38471 x_refsource_REDHAT vdb-entry
RHBZ#2191691 issue-tracking x_refsource_REDHAT
RHBZ#2191691 issue-tracking x_refsource_REDHAT x_transferred
https://lists.debian.org/debian-lts-announce/2024/12/msg00011.html
https://access.redhat.com/security/cve/CVE-2023-38471 x_refsource_REDHAT vdb-entry x_transferred

Affected products

avahi

Matching in nixpkgs

pkgs.avahi

mDNS/DNS-SD implementation

nixos-unstable -
- nixpkgs-unstable 0.8

pkgs.guile-avahi

Bindings to Avahi for GNU Guile

nixos-unstable -
- nixpkgs-unstable 0.4.1

pkgs.avahi-compat

mDNS/DNS-SD implementation

nixos-unstable -
- nixpkgs-unstable 0.8

pkgs.haskellPackages.avahi

Minimal DBus bindings for Avahi daemon (http://avahi.org)

nixos-unstable -
- nixpkgs-unstable 0.2.0

pkgs.python312Packages.avahi

mDNS/DNS-SD implementation

nixos-unstable -
- nixpkgs-unstable 0.8

pkgs.python313Packages.avahi

mDNS/DNS-SD implementation

nixos-unstable -
- nixpkgs-unstable 0.8

Package maintainers

@lovek323 Jason O'Conal <jason@oconal.id.au>
@globin Robin Gloster <mail@glob.in>
@foo-dogsquared Gabriel Arazas <foodogsquared@foodogsquared.one>