Technical Description

Fedora has released updated packages to address a vulnerability identified in Avahi. This flaw could be exploited by malicious users to manipulate a vulnerable application. For additional information, see : VUPEN/ADV-2006-4474

Affected Products

Fedora Core 5
Fedora Core 6

Solution

Upgrade the affected packages :

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/

32e2c4234b36bc666452f7da2e535ce584c9a5f2 SRPMS/avahi-0.6.11-2.fc5.src.rpm
32e2c4234b36bc666452f7da2e535ce584c9a5f2 noarch/avahi-0.6.11-2.fc5.src.rpm
e7878885bdfdac88465e8d75cc944edfc5c050ac ppc/avahi-tools-0.6.11-2.fc5.ppc.rpm
8b85236b8a0c131d808b129b46eab3d6103aa454 ppc/avahi-sharp-0.6.11-2.fc5.ppc.rpm
48f0653952fab3f5a8838f259561dd5b4fe96644 ppc/avahi-glib-0.6.11-2.fc5.ppc.rpm
8b432ebf70bcf6e262847b4af4e62354f91a0398 ppc/avahi-qt3-0.6.11-2.fc5.ppc.rpm
e606766364bff31efd5605909206d8f37db7fd7b ppc/avahi-compat-libdns_sd-devel-0.6.11-2.fc5.ppc.rpm
126381e1619178e3c81d33183f43d5a16f5f10d1 ppc/avahi-compat-howl-0.6.11-2.fc5.ppc.rpm
d10abaafae20b30e33e5f67a437e742f04e2d054 ppc/avahi-compat-howl-devel-0.6.11-2.fc5.ppc.rpm
7002d6d37cc939d33b9f5db23b7f3166dff11ffe ppc/avahi-glib-devel-0.6.11-2.fc5.ppc.rpm
9853cc873a2419adc8fb7942ac82a0abe0dee325 ppc/avahi-compat-libdns_sd-0.6.11-2.fc5.ppc.rpm
c04558487aaa2d8c10fb5111e04618663359c631 ppc/debug/avahi-debuginfo-0.6.11-2.fc5.ppc.rpm
1b90058cb273400be88e188443837094dba72739 ppc/avahi-0.6.11-2.fc5.ppc.rpm
789f280325469aa7a9ae204bc626c7e540d23a89 ppc/avahi-devel-0.6.11-2.fc5.ppc.rpm
8cf14aa4277f5a7d319c9b16a0b3c04d3c8e2d2e ppc/avahi-qt3-devel-0.6.11-2.fc5.ppc.rpm
b8ec59cfdba1a782a4756cc8eaabfdbb0141463d x86_64/avahi-0.6.11-2.fc5.x86_64.rpm
5db55bf5e5f74747e1f270e1d8f5db94bd792b1e x86_64/avahi-qt3-0.6.11-2.fc5.x86_64.rpm
1e8541f9200f549242f75829245f12e373b6657e x86_64/avahi-tools-0.6.11-2.fc5.x86_64.rpm
619d02b9858b6919de73d1f282def04a0206f1f4 x86_64/avahi-compat-libdns_sd-devel-0.6.11-2.fc5.x86_64.rpm
b238a4ad792213c6bef937ab7e2affb4b01228cc x86_64/avahi-glib-devel-0.6.11-2.fc5.x86_64.rpm
88a19292dd0aabe70d847e9e5696064a23496030 x86_64/avahi-sharp-0.6.11-2.fc5.x86_64.rpm
acb1349ebfc2c0be8f70879663e6c7ba51474765 x86_64/avahi-compat-libdns_sd-0.6.11-2.fc5.x86_64.rpm
295b97f46085e061c15eba646086dabdfc083865 x86_64/avahi-compat-howl-devel-0.6.11-2.fc5.x86_64.rpm
1cf7a7b590a58594fa902df044097eb3aa40489b x86_64/avahi-devel-0.6.11-2.fc5.x86_64.rpm
7106de09822d3c476462d817f75785792be04796 x86_64/avahi-qt3-devel-0.6.11-2.fc5.x86_64.rpm
7184f38c4860a9fb0356814c82c2627e39b4fdac x86_64/avahi-compat-howl-0.6.11-2.fc5.x86_64.rpm
87a14203c10a0b90ba21af488ee23a7ca7d6cf19 x86_64/debug/avahi-debuginfo-0.6.11-2.fc5.x86_64.rpm
34cbbee318c39fac97e5d2d44f714b80d031ef59 x86_64/avahi-glib-0.6.11-2.fc5.x86_64.rpm
fe1ead4771f1c3530b7b209aaff9f9515d2832f1 i386/avahi-0.6.11-2.fc5.i386.rpm
25cf794c7369537a2090feb43e395e8a6dffd31d i386/avahi-devel-0.6.11-2.fc5.i386.rpm
53d4c61fd5fcab1b83c865482cecde7f6315d26c i386/avahi-sharp-0.6.11-2.fc5.i386.rpm
2f6bad6cbae3395a5e87e44798febe668849d2b1 i386/debug/avahi-debuginfo-0.6.11-2.fc5.i386.rpm
a3f946078cfcbe5e16202a9833886359d6258335 i386/avahi-glib-0.6.11-2.fc5.i386.rpm
ef57058a0087ead570cf032e03863b8513888478 i386/avahi-qt3-0.6.11-2.fc5.i386.rpm
d4e6563ac4e94b387fa77c10f5e897c93b8997a5 i386/avahi-glib-devel-0.6.11-2.fc5.i386.rpm
8f341c7be89010bc7c7b2cf31bd9264fd73a9bf1 i386/avahi-compat-libdns_sd-0.6.11-2.fc5.i386.rpm
2f7b976637f72dd0c6fd7c32754a51cb5b9d67d4 i386/avahi-tools-0.6.11-2.fc5.i386.rpm
7b8181da5b4570821566e94c499b6aa0476190fc i386/avahi-compat-howl-devel-0.6.11-2.fc5.i386.rpm
f98be70953469c75a1b21c6aed64def14fd3ae72 i386/avahi-compat-libdns_sd-devel-0.6.11-2.fc5.i386.rpm
e58c1f77b6be9525b2fccfbfe003efca1463ec3b i386/avahi-compat-howl-0.6.11-2.fc5.i386.rpm
604cd0d660ce8bb1c0a5ab3dfe6a0478069fe7f1 i386/avahi-qt3-devel-0.6.11-2.fc5.i386.rpm

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/

accdb80ead3baad8b88f5a7c42f3270a3085ba60 SRPMS/avahi-0.6.15-1.fc6.src.rpm
accdb80ead3baad8b88f5a7c42f3270a3085ba60 noarch/avahi-0.6.15-1.fc6.src.rpm
b92fd27c43d293317d813bb1033529c84d28084e ppc/debug/avahi-debuginfo-0.6.15-1.fc6.ppc.rpm
2a3b875be281564b3ec2c68260e1ccab89e15e90 ppc/avahi-qt3-devel-0.6.15-1.fc6.ppc.rpm
950d8256dd3b7b7077d15a731c33521423f0b5db ppc/avahi-compat-libdns_sd-0.6.15-1.fc6.ppc.rpm
26c2ee878b745c721457afaff51d1a449da2b3ef ppc/avahi-compat-howl-0.6.15-1.fc6.ppc.rpm
5e76c4a4ccf5771240c28cd607c8fad93ec66e55 ppc/avahi-glib-devel-0.6.15-1.fc6.ppc.rpm
57b2510cc22d5287ee79d2a97e5a5ee518afb4a3 ppc/avahi-sharp-0.6.15-1.fc6.ppc.rpm
cae181f5d05cfa783944433dccddc77ba67a0f78 ppc/avahi-0.6.15-1.fc6.ppc.rpm
328392bce869d52fe0453ef4d29272036f286eff ppc/avahi-qt3-0.6.15-1.fc6.ppc.rpm
e8a70691223256dde5852ca611438ce883933e8f ppc/avahi-glib-0.6.15-1.fc6.ppc.rpm
d6b3098af11aaa194d3c1255dc0aec454bf23817 ppc/avahi-devel-0.6.15-1.fc6.ppc.rpm
499f434c87013cdeb385b8bb2b0ea09bbc8b6ec4 ppc/avahi-compat-howl-devel-0.6.15-1.fc6.ppc.rpm
92b6457c7a2602d7f73c2790cd02982811ce730a ppc/avahi-tools-0.6.15-1.fc6.ppc.rpm
187b143bc1e6aa258b6d1c792e230ba172d10a82 ppc/avahi-compat-libdns_sd-devel-0.6.15-1.fc6.ppc.rpm
2de150d95d629fc480fb2edd5bb6d33c2c2382dd x86_64/avahi-qt3-devel-0.6.15-1.fc6.x86_64.rpm
67c9475fad8784d08e5e90747c1dccbd083c5c4d x86_64/avahi-qt3-0.6.15-1.fc6.x86_64.rpm
b86dbea19ecb461f3ad19b4f87037f420633e63b x86_64/avahi-sharp-0.6.15-1.fc6.x86_64.rpm
6bea97d8665600b39181c28cffed83c185a25b16 x86_64/avahi-tools-0.6.15-1.fc6.x86_64.rpm
4590f072b060d3c40b86e8d690562b8b95417d5b x86_64/avahi-glib-devel-0.6.15-1.fc6.x86_64.rpm
2892f607beb906918060d7af72196b0b7d652708 x86_64/debug/avahi-debuginfo-0.6.15-1.fc6.x86_64.rpm
9180287394ca54cec2f6bb7427869ce4334ece86 x86_64/avahi-compat-howl-0.6.15-1.fc6.x86_64.rpm
44da1d0e49ee2772e15842b75a9707ff422ebaac x86_64/avahi-compat-libdns_sd-devel-0.6.15-1.fc6.x86_64.rpm
13bef722d4ba44c4cd355275b4c32c4247bd0eee x86_64/avahi-compat-howl-devel-0.6.15-1.fc6.x86_64.rpm
f8a9ac13d08fae17c6b3848a0d8741783e061cbe x86_64/avahi-devel-0.6.15-1.fc6.x86_64.rpm
1d7a82adb7636f5d3920fb8f2941228e93f48992 x86_64/avahi-compat-libdns_sd-0.6.15-1.fc6.x86_64.rpm
e774a297ed8001e644c5d12361e560646840eae1 x86_64/avahi-0.6.15-1.fc6.x86_64.rpm
28ab2cab3650fb9fefb7577bcf5f62fd591e4d72 x86_64/avahi-glib-0.6.15-1.fc6.x86_64.rpm
c2784d5483d23be23d27c2095723cfee5c30a8ba i386/avahi-glib-0.6.15-1.fc6.i386.rpm
f770b3536e4d876676861ce9208dece9fb5e791f i386/avahi-tools-0.6.15-1.fc6.i386.rpm
1b895675ce9bb427214ad6aa3dafcc0648c84478 i386/avahi-0.6.15-1.fc6.i386.rpm
5ba2a6070e4ed086c762079b040fcde1d3f11f16 i386/avahi-devel-0.6.15-1.fc6.i386.rpm
1b7a8938b146a8e1aae035fc6bd8340f8b141615 i386/avahi-compat-libdns_sd-0.6.15-1.fc6.i386.rpm
a1d897329fb3f4a76a37f861c5ca0a60ebe3efa0 i386/avahi-sharp-0.6.15-1.fc6.i386.rpm
4723fa75f4d6dd83bbeb32000ad26cd81efd64ca i386/avahi-compat-libdns_sd-devel-0.6.15-1.fc6.i386.rpm
5fb3ff0c4b962c0c81a7f682bd1e75d4d30005a5 i386/avahi-glib-devel-0.6.15-1.fc6.i386.rpm
7ee906d97b131ae81bbb8b806a548e0f0a3f50af i386/debug/avahi-debuginfo-0.6.15-1.fc6.i386.rpm
f48bea3a1d0e014c4ac63497173b4c1f8dd0daa3 i386/avahi-qt3-devel-0.6.15-1.fc6.i386.rpm
58c66ad8a51f8337ffa2a1c280bfdcc31a5b2de5 i386/avahi-compat-howl-devel-0.6.15-1.fc6.i386.rpm
47d21c357b52207ab79d0a737fe92b856421ddc5 i386/avahi-compat-howl-0.6.15-1.fc6.i386.rpm
f1d1ec33cd24890aeca0d671ac93a4fefc17e196 i386/avahi-qt3-0.6.15-1.fc6.i386.rpm

References

http://www.vupen.com/english/advisories/2006/4758
https://www.redhat.com/archives/fedora-package-announce/2006-November/msg00215.html
https://www.redhat.com/archives/fedora-package-announce/2006-December/msg00053.html

ChangeLog

2006-11-29 : Initial release
2006-12-11 : Updated Solution

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.