-
avahi (0.6.25-1ubuntu6.2) lucid-security; urgency=low
* SECURITY UPDATE: denial of service via NULL packet
- debian/patches/CVE-2011-1002.patch: still read corrupt packets from
sockets in avahi-core/socket.c.
- CVE-2011-1002
-- Marc Deslauriers <email address hidden> Fri, 04 Mar 2011 14:11:47 -0500
-
avahi (0.6.25-1ubuntu6.1) lucid-security; urgency=low
* SECURITY UPDATE: denial of service via invalid DNS packet
- debian/patches/CVE-2010-2244.patch: fail gracefully on corrupt
packets in avahi-core/socket.c.
- CVE-2010-2244
-- Marc Deslauriers <email address hidden> Wed, 22 Sep 2010 12:08:01 -0400
-
avahi (0.6.25-1ubuntu6) lucid; urgency=low
* Upstartify Avahi AppArmor profile loading.
-- Kees Cook <email address hidden> Fri, 04 Dec 2009 12:44:49 -0800
-
avahi (0.6.25-1ubuntu5.1) karmic-proposed; urgency=low
* debian/avahi-daemon.upstart: use eucalyptus specific avahi-daemon
configuration file if it's available. (LP: #458904)
-- Mathias Gug <email address hidden> Fri, 30 Oct 2009 17:43:22 -0400
-
avahi (0.6.25-1ubuntu5) karmic; urgency=low
* debian/patches/11_avahi-autoipd.action-add-routes.patch: drop; this patch
doesn't actually help anything for any network with an even remotely sane
configuration, because hosts without a link-local address aren't going to
route their response packets to us *anyway*, and having a standing default
route on interfaces with no routable address causes network timeouts for
any packets that *should* get a no route to host instead. LP: 99489.
-- Steve Langasek <email address hidden> Sat, 17 Oct 2009 19:13:36 -0700
