CVE-2021-26720

Name of the Vulnerable Software and Affected Versions avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4

Description The issue is related to the execution of avahi-daemon-check-dns.sh as root via /etc/network/if-up.d/avahi-daemon, allowing a local attacker to cause a denial of service or create arbitrary empty files via a symlink attack on files under /run/avahi-daemon. This affects the packaging for Debian GNU/Linux, used indirectly by SUSE, but not the upstream Avahi product. The vulnerability can also lead to unauthorized access to confidential data and disruption of their integrity.

Recommendations For avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4, consider disabling the execution of the script as root via /etc/network/if-up.d/avahi-daemon as a temporary workaround to minimize the risk of exploitation. Restrict access to files under /run/avahi-daemon to prevent a symlink attack. At the moment, there is no information about a newer version that contains a fix for this vulnerability.