CVE-2026-24401

Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In versions 0.9rc2 and below, avahi-daemon can be crashed via a segmentation fault by sending an unsolicited mDNS response containing a recursive CNAME record, where the alias and canonica...

CVE-2023-38469 affecting package avahi for versions less than 0.8-3

CVE-2023-38469 affecting package avahi for versions less than 0.8-3. A patched version of the package is available...

PT-2021-7335 · Avahi +8 · Avahi +8

Name of the Vulnerable Software and Affected Versions: Avahi versions 0.6 up to 0.8 Description: The issue is related to the client work function in the Avahi service discovery system, which can lead to an infinite loop due to a condition with no exit. This can be exploited by an attacker to caus...

PT-2017-3764

Name of the Vulnerable Software and Affected Versions: Avahi versions 0.6.32 through 0.7 Description: The issue is related to the avahi-daemon in Avahi, which inadvertently responds to IPv6 unicast queries with source addresses that are not on-link. This allows remote attackers to cause a denial ...