Security update for avahi
This update for avahi fixes the following issues:
- CVE-2021-26720: drop privileges when invoking avahi-daemon-check-dns.sh (bsc#1180827)
- Update avahi-daemon-check-dns.sh from Debian. Our previous version relied on ifconfig, route, and init.d.
- Add sudo to requires: used to drop privileges.
This update was imported from the SUSE:SLE-15-SP1:Update update project.
-
Submitted by
Michael Gorse (mgorse)
Fixed bugs
bnc#1180827
VUL-0: CVE-2021-26720: EMBARGOED: avahi: outdated and insecure if-up script avahi-daemon-check-dns.sh
