{"id":"MGASA-2019-0081","summary":"Updated avahi packages fix security vulnerability","details":"It was found that avahi responds to unicast queries coming from outside of\nlocal network which may cause an information leak, such as disclosing the\ndevice type/model that responds to the request or the operating system.\nThe mDNS response may also be used to amplify denial of service attacks\nagainst other networks as the response size is greater than the size of\nrequest (CVE-2017-6519).\n","modified":"2026-04-16T06:22:20.887628947Z","published":"2019-02-14T08:38:16Z","upstream":["CVE-2017-6519"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2019-0081.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=24251"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1426712"},{"type":"WEB","url":"https://usn.ubuntu.com/3876-1/"}],"affected":[{"package":{"name":"avahi","ecosystem":"Mageia:6","purl":"pkg:rpm/mageia/avahi?arch=source&distro=mageia-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.6.32-1.1.mga6"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2019-0081.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}