29 matches found
EulerOS Virtualization 2.10.0 : avahi (EulerOS-SA-2026-1549)
According to the versions of the avahi package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in the Avahi-daemon, where it initializes DNS transaction IDs randomly only once at startup, incrementing them...
SUSE-SU-2026:20491-1 Security update for avahi
This update for avahi fixes the following issues: - CVE-2024-52615: Fixed possible DNS response injection via the use of fixed source ports for wide-area DNS queries bsc1233421...
ROS-20260209-73-0001
A vulnerability in the Avahi Wide-Area Local Area Network Service Discovery System is related to the use of insufficiently randomized values. Exploitation of the vulnerability could allow an attacker acting remotely to affect the confidentiality of protected information through a specially crafte...
RockyLinux 9 : avahi (RLSA-2025:7437)
The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:7437 advisory. avahi: Avahi Wide-Area DNS Predictable Transaction IDs CVE-2024-52616 Tenable has extracted the preceding description block directly from the RockyLinux security...
RockyLinux 9 : avahi (RLSA-2025:11402)
The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:11402 advisory. avahi: Avahi Wide-Area DNS Uses Constant Source Port CVE-2024-52615 Tenable has extracted the preceding description block directly from the RockyLinux security...
RockyLinux 10 : avahi (RLSA-2025:16441)
The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:16441 advisory. avahi: Avahi Wide-Area DNS Uses Constant Source Port CVE-2024-52615 Tenable has extracted the preceding description block directly from the RockyLinux security...
avahi security update
An update is available for avahi. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Avahi is an implementation of the DNS Service Discovery and Multicast DNS...
avahi security update
An update is available for avahi. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Avahi is an implementation of the DNS Service Discovery and Multicast DNS...
RLSA-2025:7437 Moderate: avahi security update
Avahi is an implementation of the DNS Service Discovery and Multicast DNS specifications for Zero Configuration Networking. It facilitates service discovery on a local network. Avahi and Avahi-aware applications allow you to plug your computer into a network and, with no configuration, view other...
avahi security update
An update is available for avahi. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Avahi is an implementation of the DNS Service Discovery and Multicast DNS...
Security update for avahi
This update for avahi fixes the following issues: CVE-2024-52615: wide-area DNS uses constant source port for queries and can expose the Avahi-daemon to DNS spoofing attacks bsc1233421. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...
ALSA-2025:16441 Moderate: avahi security update
Avahi is an implementation of the DNS Service Discovery and Multicast DNS specifications for Zero Configuration Networking. It facilitates service discovery on a local network. Avahi and Avahi-aware applications allow you to plug your computer into a network and, with no configuration, view other...
RHEL 10 : avahi (RHSA-2025:16441)
The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:16441 advisory. Avahi is an implementation of the DNS Service Discovery and Multicast DNS specifications for Zero Configuration Networking. It facilitates service...
Security update for avahi
This update for avahi fixes the following issues: CVE-2024-52615: wide-area DNS uses constant source port for queries and can expose the Avahi-daemon to DNS spoofing attacks bsc1233421. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...
avahi: Avahi Wide-Area DNS Uses Constant Source Port
A flaw was found in Avahi-daemon, which relies on fixed source ports for wide-area DNS queries. This issue simplifies attacks where malicious DNS responses are injected...
SUSE-SU-2025:20308-1 Security update for avahi
This update for avahi fixes the following issues: - CVE-2024-52616: Fixed predictable transaction IDs for Wide-Area DNS bsc1233420 - Drop rcFOO symlinks jscPED-266...
Security update for avahi
This update for avahi fixes the following issues: CVE-2024-52616: Fixed predictable transaction IDs for Wide-Area DNS bsc1233420 Drop rcFOO symlinks jscPED-266. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...
MGASA-2025-0007 Updated avahi packages fix security vulnerabilities
Avahi wide-area dns uses constant source port. CVE-2024-52615 Avahi wide-area dns predictable transaction ids. CVE-2024-52616...
Updated avahi packages fix security vulnerabilities
Avahi wide-area dns uses constant source port. CVE-2024-52615 Avahi wide-area dns predictable transaction ids. CVE-2024-52616...
Medium: avahi
Issue Overview: avahi: Avahi Wide-Area DNS Uses Constant Source Port CVE-2024-52615 avahi: Avahi Wide-Area DNS Predictable Transaction IDs CVE-2024-52616 Affected Packages: avahi Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference...