openSUSE 10 Security Update : avahi (avahi-2217)

This script is Copyright (C) 2007-2014 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

Avahi did not check that the received netlink messages originated from
the kernel. This could be used by local attackers to inject packets
into avahi which could be used to inject bad netlink messages into
Avahi, confusing its routing code or worse. (CVE-2006-5461)

Solution :

Update the affected avahi package.

Risk factor :

Low / CVSS Base Score : 2.1
(CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:N)

Family: SuSE Local Security Checks

Nessus Plugin ID: 27160 ()

Bugtraq ID:

CVE ID: CVE-2006-5461

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now