VulnerableCode Package Details - pkg:deb/debian/avahi@0.8-10%2Bdeb12u1?distro=trixie

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/avahi@0.8-10%2Bdeb12u1?distro=trixie

Essentials
History (62)

purl	pkg:deb/debian/avahi@0.8-10%2Bdeb12u1?distro=trixie

Next non-vulnerable version	0.8-14
Latest non-vulnerable version	0.8-18
Risk	3.0

Vulnerabilities affecting this package (5)

Vulnerability	Summary	Fixed by
VCID-1gkw-3zt3-sbb9 Aliases: CVE-2026-24401	avahi: Avahi: Denial of Service via recursive CNAME record in mDNS response	0.8-18 Affected by 0 other vulnerabilities.
VCID-1qch-uvj9-nucr Aliases: CVE-2025-68471	avahi: Avahi: Denial of Service via unsolicited CNAME announcements	0.8-18 Affected by 0 other vulnerabilities.
VCID-c1wj-a2qm-wbhr Aliases: CVE-2025-68468	avahi: Avahi: Denial of Service via crafted mDNS/DNS-SD announcements	0.8-18 Affected by 0 other vulnerabilities.
VCID-nbtb-77zf-kkh8 Aliases: CVE-2024-52616	avahi: Avahi Wide-Area DNS Predictable Transaction IDs	0.8-18 Affected by 0 other vulnerabilities.
VCID-unwy-8b3g-hbbx Aliases: CVE-2025-68276	avahi: Avahi: Denial of Service via D-Bus record browsers with AVAHI_LOOKUP_USE_WIDE_AREA flag	0.8-18 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (19)

Vulnerability	Summary	Aliases
VCID-4xxj-5827-gqck	avahi: Reachable assertion in avahi_alternative_host_name	CVE-2023-38473
VCID-7afj-kkdv-zbez	avahi: Multicast DNS responds to unicast queries outside of local network	CVE-2017-6519
VCID-82ze-32xz-pqgn	avahi: Reachable assertion in avahi_dns_packet_append_record	CVE-2023-38469
VCID-9mjb-81e1-qbau	avahi: Reachable assertion in dbus_set_host_name	CVE-2023-38471
VCID-9w4x-33np-2fg4	avahi: Reachable assertion in avahi_escape_label	CVE-2023-38470
VCID-b6c5-yjhz-x3hh	Multiple vulnerabilities were found in Avahi, allowing for Denial of Service.	CVE-2011-1002
VCID-daum-72mg-pkhn	Multiple vulnerabilities were found in Avahi, allowing for Denial of Service.	CVE-2010-2244
VCID-ezsn-vvex-gkah	avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is executed as root via /etc/network/if-up.d/avahi-daemon, and allows a local attacker to cause a denial of service or create arbitrary empty files via a symlink attack on files under /run/avahi-daemon. NOTE: this only affects the packaging for Debian GNU/Linux (used indirectly by SUSE), not the upstream Avahi product.	CVE-2021-26720
VCID-ffax-863u-skce	A Denial of Service vulnerability has been discovered in Avahi.	CVE-2008-5081
VCID-g2fk-pmey-ekh9	avahi: avahi-daemon can be crashed via DBus	CVE-2023-1981
VCID-gmfp-mzuj-d7gz	avahi: Reachable assertion in avahi_rdata_parse	CVE-2023-38472
VCID-gp1s-m1bh-6fc2	avahi: assert fail local DoS via D-Bus	CVE-2007-3372
VCID-hjrp-3yew-wqeg	avahi: reachable assertion in avahi_s_host_name_resolver_start when trying to resolve badly-formatted hostnames	CVE-2021-3502
VCID-hs1w-ky4x-rffx	An error in Avahi might lead to a Denial of Service via network and CPU consumption.	CVE-2009-0758
VCID-n9y6-p84p-7ke9	Avahi before 0.6.10 allows local users to cause a denial of service (mDNS/DNS-SD service disconnect) via unspecified mDNS name conflicts.	CVE-2006-2288
VCID-qx9d-jfsn-6fdu	Avahi fails to verify the origin of netlink messages, which could allow local users to spoof network changes.	CVE-2006-5461
VCID-rpzc-ryw1-p7e5	avahi: Local DoS by event-busy-loop from writing long lines to /run/avahi-daemon/socket	CVE-2021-3468
VCID-vdut-d3k2-c7ex	Buffer overflow in avahi-core in Avahi before 0.6.10 allows local users to execute arbitrary code via unknown vectors.	CVE-2006-2289
VCID-y1n3-w6v9-m3cd	The consume_labels function in avahi-core/dns.c in Avahi before 0.6.16 allows remote attackers to cause a denial of service (infinite loop) via a crafted compressed DNS response with a label that points to itself.	CVE-2006-6870

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T13:25:21.262683+00:00	Debian Importer	Fixing	VCID-hjrp-3yew-wqeg	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T13:24:50.096315+00:00	Debian Importer	Fixing	VCID-rpzc-ryw1-p7e5	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:42:37.419672+00:00	Debian Importer	Fixing	VCID-82ze-32xz-pqgn	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:38:46.156217+00:00	Debian Importer	Fixing	VCID-gmfp-mzuj-d7gz	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:04:47.782177+00:00	Debian Importer	Fixing	VCID-ffax-863u-skce	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:53:57.347057+00:00	Debian Importer	Fixing	VCID-hs1w-ky4x-rffx	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:50:27.739267+00:00	Debian Importer	Fixing	VCID-g2fk-pmey-ekh9	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:44:14.996510+00:00	Debian Importer	Fixing	VCID-daum-72mg-pkhn	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:21:26.864458+00:00	Debian Importer	Fixing	VCID-ezsn-vvex-gkah	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:01:45.175093+00:00	Debian Importer	Fixing	VCID-b6c5-yjhz-x3hh	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:52:52.746049+00:00	Debian Importer	Fixing	VCID-7afj-kkdv-zbez	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:52:45.979751+00:00	Debian Importer	Fixing	VCID-n9y6-p84p-7ke9	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:41:00.372710+00:00	Debian Importer	Fixing	VCID-qx9d-jfsn-6fdu	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:04:38.106876+00:00	Debian Importer	Fixing	VCID-vdut-d3k2-c7ex	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:04:14.374425+00:00	Debian Importer	Fixing	VCID-9mjb-81e1-qbau	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:03:51.882050+00:00	Debian Importer	Fixing	VCID-gp1s-m1bh-6fc2	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:22:08.007802+00:00	Debian Importer	Fixing	VCID-9w4x-33np-2fg4	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:19:58.092214+00:00	Debian Importer	Fixing	VCID-y1n3-w6v9-m3cd	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:48:41.081279+00:00	Debian Importer	Fixing	VCID-4xxj-5827-gqck	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T09:15:32.699778+00:00	Debian Importer	Fixing	VCID-hjrp-3yew-wqeg	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T09:15:09.304860+00:00	Debian Importer	Fixing	VCID-rpzc-ryw1-p7e5	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:42:49.659604+00:00	Debian Importer	Fixing	VCID-82ze-32xz-pqgn	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:39:57.352045+00:00	Debian Importer	Fixing	VCID-gmfp-mzuj-d7gz	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:15:17.873063+00:00	Debian Importer	Fixing	VCID-ffax-863u-skce	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:07:23.063964+00:00	Debian Importer	Fixing	VCID-hs1w-ky4x-rffx	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:04:53.733843+00:00	Debian Importer	Fixing	VCID-g2fk-pmey-ekh9	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:00:06.017095+00:00	Debian Importer	Fixing	VCID-daum-72mg-pkhn	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:43:55.485168+00:00	Debian Importer	Fixing	VCID-ezsn-vvex-gkah	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:29:13.852534+00:00	Debian Importer	Fixing	VCID-b6c5-yjhz-x3hh	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:22:18.357520+00:00	Debian Importer	Fixing	VCID-7afj-kkdv-zbez	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:22:13.463418+00:00	Debian Importer	Fixing	VCID-n9y6-p84p-7ke9	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:13:36.204988+00:00	Debian Importer	Fixing	VCID-qx9d-jfsn-6fdu	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:45:43.187696+00:00	Debian Importer	Fixing	VCID-vdut-d3k2-c7ex	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:45:24.429910+00:00	Debian Importer	Fixing	VCID-9mjb-81e1-qbau	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:45:07.052156+00:00	Debian Importer	Fixing	VCID-gp1s-m1bh-6fc2	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:15:26.303784+00:00	Debian Importer	Fixing	VCID-9w4x-33np-2fg4	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:14:06.275834+00:00	Debian Importer	Fixing	VCID-y1n3-w6v9-m3cd	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:55:13.419365+00:00	Debian Importer	Fixing	VCID-4xxj-5827-gqck	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:19:51.423391+00:00	Debian Importer	Affected by	VCID-1gkw-3zt3-sbb9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:19:51.410895+00:00	Debian Importer	Affected by	VCID-1qch-uvj9-nucr	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:19:51.398808+00:00	Debian Importer	Affected by	VCID-c1wj-a2qm-wbhr	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:19:51.386559+00:00	Debian Importer	Affected by	VCID-unwy-8b3g-hbbx	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:19:51.367386+00:00	Debian Importer	Affected by	VCID-nbtb-77zf-kkh8	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:18:29.749846+00:00	Debian Importer	Fixing	VCID-hjrp-3yew-wqeg	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:18:28.617460+00:00	Debian Importer	Fixing	VCID-rpzc-ryw1-p7e5	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:15:56.309471+00:00	Debian Importer	Fixing	VCID-82ze-32xz-pqgn	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:15:43.572233+00:00	Debian Importer	Fixing	VCID-gmfp-mzuj-d7gz	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:13:41.813384+00:00	Debian Importer	Fixing	VCID-ffax-863u-skce	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:13:03.572135+00:00	Debian Importer	Fixing	VCID-hs1w-ky4x-rffx	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:12:50.432834+00:00	Debian Importer	Fixing	VCID-g2fk-pmey-ekh9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:12:36.417827+00:00	Debian Importer	Fixing	VCID-daum-72mg-pkhn	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:11:18.620978+00:00	Debian Importer	Fixing	VCID-ezsn-vvex-gkah	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:10:09.926509+00:00	Debian Importer	Fixing	VCID-b6c5-yjhz-x3hh	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:09:45.261095+00:00	Debian Importer	Fixing	VCID-7afj-kkdv-zbez	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:09:45.004199+00:00	Debian Importer	Fixing	VCID-n9y6-p84p-7ke9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:09:03.734617+00:00	Debian Importer	Fixing	VCID-qx9d-jfsn-6fdu	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:06:56.630426+00:00	Debian Importer	Fixing	VCID-vdut-d3k2-c7ex	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:06:56.140976+00:00	Debian Importer	Fixing	VCID-9mjb-81e1-qbau	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:06:53.202120+00:00	Debian Importer	Fixing	VCID-gp1s-m1bh-6fc2	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:04:42.593518+00:00	Debian Importer	Fixing	VCID-9w4x-33np-2fg4	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:04:34.767302+00:00	Debian Importer	Fixing	VCID-y1n3-w6v9-m3cd	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:02:49.307435+00:00	Debian Importer	Fixing	VCID-4xxj-5827-gqck	https://security-tracker.debian.org/tracker/data/json	38.1.0