CVE-2011-0220

Apple Bonjour before 2011 allows a crash via a crafted multicast DNS packet.

CVE-2008-2326

mDNSResponder in the Bonjour Namespace Provider in Apple Bonjour for Windows before 1.0.5 allows attackers to cause a denial of service (NULL pointer dereference and application crash) by resolving a crafted .local domain name that contains a long label.