CVE-2023-38472

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-38472

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-38472.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-38472

Related

Published

2023-11-02T15:15:08Z

Modified

2024-12-10T04:48:54.527544Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

A vulnerability was found in Avahi. A reachable assertion exists in the avahirdataparse() function.

References

Affected packages

Alpine:v3.19 / avahi

Package

Name: avahi
Purl: pkg:apk/alpine/avahi?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.8-r14

Affected versions

0.*

0.6.28-r0

0.6.28-r1

0.6.28-r2

0.6.29-r0

0.6.30-r0

0.6.30-r1

0.6.30-r2

0.6.30-r3

0.6.30-r4

0.6.31-r0

0.6.31-r1

0.6.31-r2

0.6.31-r3

0.6.31-r4

0.6.31-r5

0.6.31-r6

0.6.31-r7

0.6.31-r8

0.6.32-r0

0.6.32-r1

0.6.32-r2

0.6.32-r3

0.6.32-r4

0.7-r0

0.7-r1

0.7-r2

0.7-r3

0.7-r4

0.8-r0

0.8-r1

0.8-r2

0.8-r3

0.8-r4

0.8-r5

0.8-r6

0.8-r7

0.8-r8

0.8-r9

0.8-r10

0.8-r11

0.8-r12

0.8-r13

Alpine:v3.20 / avahi

Package

Name: avahi
Purl: pkg:apk/alpine/avahi?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.8-r14

Affected versions

0.*

0.6.28-r0

0.6.28-r1

0.6.28-r2

0.6.29-r0

0.6.30-r0

0.6.30-r1

0.6.30-r2

0.6.30-r3

0.6.30-r4

0.6.31-r0

0.6.31-r1

0.6.31-r2

0.6.31-r3

0.6.31-r4

0.6.31-r5

0.6.31-r6

0.6.31-r7

0.6.31-r8

0.6.32-r0

0.6.32-r1

0.6.32-r2

0.6.32-r3

0.6.32-r4

0.7-r0

0.7-r1

0.7-r2

0.7-r3

0.7-r4

0.8-r0

0.8-r1

0.8-r2

0.8-r3

0.8-r4

0.8-r5

0.8-r6

0.8-r7

0.8-r8

0.8-r9

0.8-r10

0.8-r11

0.8-r12

0.8-r13

Alpine:v3.21 / avahi

Package

Name: avahi
Purl: pkg:apk/alpine/avahi?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.8-r14

Affected versions

0.*

0.6.28-r0

0.6.28-r1

0.6.28-r2

0.6.29-r0

0.6.30-r0

0.6.30-r1

0.6.30-r2

0.6.30-r3

0.6.30-r4

0.6.31-r0

0.6.31-r1

0.6.31-r2

0.6.31-r3

0.6.31-r4

0.6.31-r5

0.6.31-r6

0.6.31-r7

0.6.31-r8

0.6.32-r0

0.6.32-r1

0.6.32-r2

0.6.32-r3

0.6.32-r4

0.7-r0

0.7-r1

0.7-r2

0.7-r3

0.7-r4

0.8-r0

0.8-r1

0.8-r2

0.8-r3

0.8-r4

0.8-r5

0.8-r6

0.8-r7

0.8-r8

0.8-r9

0.8-r10

0.8-r11

0.8-r12

0.8-r13

Debian:11 / avahi

Package

Name: avahi
Purl: pkg:deb/debian/avahi?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.8-5+deb11u3

Affected versions

0.*

0.8-5

0.8-5+deb11u1

0.8-5+deb11u2

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / avahi

Package

Name: avahi
Purl: pkg:deb/debian/avahi?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.8-10

0.8-11

0.8-12

0.8-13

0.8-14

0.8-15

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / avahi

Package

Name: avahi
Purl: pkg:deb/debian/avahi?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.8-14

Affected versions

0.*

0.8-10

0.8-11

0.8-12

0.8-13

Ecosystem specific

{
    "urgency": "not yet assigned"
}