Red Hat Bugzilla – Bug 221439
CVE-2006-6870 Maliciously crafted packed can DoS avahi daemon
Last modified: 2007-11-30 17:07:39 EST
Description of problem:
Malformed compressed packed can trigger an endless loop
consuming 100% of cpu time upon its reception.
Version-Release number of selected component (if applicable):
FC5 (0.6.11), FC6 (0.6.15), RHEL5 (0.6.15)
Steps to Reproduce:
No reproducer available.
Created attachment 144823 [details]
Upstram patch for avahi Ticket #84 bug
Martin suggests an update to 0.6.16, which incorporates this specific fix and a
number of others. Proposing an exception.
Avahi was upgraded to 0.6.16 which should resolve this issue.
in 20070112 tree
avahi-0.6.16-1.el5 included in 20071111.1 and 20071112.3 trees.