VulnerableCode Package Details - pkg:deb/debian/avahi@0.8-16?distro=trixie

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/avahi@0.8-16?distro=trixie

Essentials
History (62)

purl	pkg:deb/debian/avahi@0.8-16?distro=trixie

Next non-vulnerable version	0.8-18
Latest non-vulnerable version	0.8-18
Risk	3.0

Vulnerabilities affecting this package (5)

Vulnerability	Summary	Fixed by
VCID-1gkw-3zt3-sbb9 Aliases: CVE-2026-24401	avahi: Avahi: Denial of Service via recursive CNAME record in mDNS response	0.8-18 Affected by 0 other vulnerabilities.
VCID-1qch-uvj9-nucr Aliases: CVE-2025-68471	avahi: Avahi: Denial of Service via unsolicited CNAME announcements	0.8-18 Affected by 0 other vulnerabilities.
VCID-c1wj-a2qm-wbhr Aliases: CVE-2025-68468	avahi: Avahi: Denial of Service via crafted mDNS/DNS-SD announcements	0.8-18 Affected by 0 other vulnerabilities.
VCID-nbtb-77zf-kkh8 Aliases: CVE-2024-52616	avahi: Avahi Wide-Area DNS Predictable Transaction IDs	0.8-18 Affected by 0 other vulnerabilities.
VCID-unwy-8b3g-hbbx Aliases: CVE-2025-68276	avahi: Avahi: Denial of Service via D-Bus record browsers with AVAHI_LOOKUP_USE_WIDE_AREA flag	0.8-18 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (19)

Vulnerability	Summary	Aliases
VCID-4xxj-5827-gqck	avahi: Reachable assertion in avahi_alternative_host_name	CVE-2023-38473
VCID-7afj-kkdv-zbez	avahi: Multicast DNS responds to unicast queries outside of local network	CVE-2017-6519
VCID-82ze-32xz-pqgn	avahi: Reachable assertion in avahi_dns_packet_append_record	CVE-2023-38469
VCID-9mjb-81e1-qbau	avahi: Reachable assertion in dbus_set_host_name	CVE-2023-38471
VCID-9w4x-33np-2fg4	avahi: Reachable assertion in avahi_escape_label	CVE-2023-38470
VCID-b6c5-yjhz-x3hh	Multiple vulnerabilities were found in Avahi, allowing for Denial of Service.	CVE-2011-1002
VCID-daum-72mg-pkhn	Multiple vulnerabilities were found in Avahi, allowing for Denial of Service.	CVE-2010-2244
VCID-ezsn-vvex-gkah	avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is executed as root via /etc/network/if-up.d/avahi-daemon, and allows a local attacker to cause a denial of service or create arbitrary empty files via a symlink attack on files under /run/avahi-daemon. NOTE: this only affects the packaging for Debian GNU/Linux (used indirectly by SUSE), not the upstream Avahi product.	CVE-2021-26720
VCID-ffax-863u-skce	A Denial of Service vulnerability has been discovered in Avahi.	CVE-2008-5081
VCID-g2fk-pmey-ekh9	avahi: avahi-daemon can be crashed via DBus	CVE-2023-1981
VCID-gmfp-mzuj-d7gz	avahi: Reachable assertion in avahi_rdata_parse	CVE-2023-38472
VCID-gp1s-m1bh-6fc2	avahi: assert fail local DoS via D-Bus	CVE-2007-3372
VCID-hjrp-3yew-wqeg	avahi: reachable assertion in avahi_s_host_name_resolver_start when trying to resolve badly-formatted hostnames	CVE-2021-3502
VCID-hs1w-ky4x-rffx	An error in Avahi might lead to a Denial of Service via network and CPU consumption.	CVE-2009-0758
VCID-n9y6-p84p-7ke9	Avahi before 0.6.10 allows local users to cause a denial of service (mDNS/DNS-SD service disconnect) via unspecified mDNS name conflicts.	CVE-2006-2288
VCID-qx9d-jfsn-6fdu	Avahi fails to verify the origin of netlink messages, which could allow local users to spoof network changes.	CVE-2006-5461
VCID-rpzc-ryw1-p7e5	avahi: Local DoS by event-busy-loop from writing long lines to /run/avahi-daemon/socket	CVE-2021-3468
VCID-vdut-d3k2-c7ex	Buffer overflow in avahi-core in Avahi before 0.6.10 allows local users to execute arbitrary code via unknown vectors.	CVE-2006-2289
VCID-y1n3-w6v9-m3cd	The consume_labels function in avahi-core/dns.c in Avahi before 0.6.16 allows remote attackers to cause a denial of service (infinite loop) via a crafted compressed DNS response with a label that points to itself.	CVE-2006-6870

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T13:25:21.270472+00:00	Debian Importer	Fixing	VCID-hjrp-3yew-wqeg	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T13:24:50.103332+00:00	Debian Importer	Fixing	VCID-rpzc-ryw1-p7e5	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:42:37.431730+00:00	Debian Importer	Fixing	VCID-82ze-32xz-pqgn	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:38:46.169506+00:00	Debian Importer	Fixing	VCID-gmfp-mzuj-d7gz	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:04:47.788357+00:00	Debian Importer	Fixing	VCID-ffax-863u-skce	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:53:57.353838+00:00	Debian Importer	Fixing	VCID-hs1w-ky4x-rffx	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:50:27.745828+00:00	Debian Importer	Fixing	VCID-g2fk-pmey-ekh9	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:44:15.001526+00:00	Debian Importer	Fixing	VCID-daum-72mg-pkhn	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:21:26.869781+00:00	Debian Importer	Fixing	VCID-ezsn-vvex-gkah	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:01:45.181561+00:00	Debian Importer	Fixing	VCID-b6c5-yjhz-x3hh	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:52:52.752543+00:00	Debian Importer	Fixing	VCID-7afj-kkdv-zbez	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:52:45.984795+00:00	Debian Importer	Fixing	VCID-n9y6-p84p-7ke9	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:41:00.378042+00:00	Debian Importer	Fixing	VCID-qx9d-jfsn-6fdu	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:04:38.111586+00:00	Debian Importer	Fixing	VCID-vdut-d3k2-c7ex	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:04:14.386656+00:00	Debian Importer	Fixing	VCID-9mjb-81e1-qbau	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:03:51.886447+00:00	Debian Importer	Fixing	VCID-gp1s-m1bh-6fc2	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:22:08.020348+00:00	Debian Importer	Fixing	VCID-9w4x-33np-2fg4	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:19:58.097516+00:00	Debian Importer	Fixing	VCID-y1n3-w6v9-m3cd	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:48:41.088620+00:00	Debian Importer	Fixing	VCID-4xxj-5827-gqck	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T09:15:32.706823+00:00	Debian Importer	Fixing	VCID-hjrp-3yew-wqeg	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T09:15:09.312158+00:00	Debian Importer	Fixing	VCID-rpzc-ryw1-p7e5	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:42:49.672069+00:00	Debian Importer	Fixing	VCID-82ze-32xz-pqgn	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:39:57.365017+00:00	Debian Importer	Fixing	VCID-gmfp-mzuj-d7gz	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:15:17.879224+00:00	Debian Importer	Fixing	VCID-ffax-863u-skce	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:07:23.067894+00:00	Debian Importer	Fixing	VCID-hs1w-ky4x-rffx	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:04:53.740758+00:00	Debian Importer	Fixing	VCID-g2fk-pmey-ekh9	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:00:06.022404+00:00	Debian Importer	Fixing	VCID-daum-72mg-pkhn	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:43:55.490562+00:00	Debian Importer	Fixing	VCID-ezsn-vvex-gkah	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:29:13.859588+00:00	Debian Importer	Fixing	VCID-b6c5-yjhz-x3hh	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:22:18.365332+00:00	Debian Importer	Fixing	VCID-7afj-kkdv-zbez	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:22:13.468859+00:00	Debian Importer	Fixing	VCID-n9y6-p84p-7ke9	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:13:36.215040+00:00	Debian Importer	Fixing	VCID-qx9d-jfsn-6fdu	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:45:43.193218+00:00	Debian Importer	Fixing	VCID-vdut-d3k2-c7ex	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:45:24.444003+00:00	Debian Importer	Fixing	VCID-9mjb-81e1-qbau	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:45:07.058169+00:00	Debian Importer	Fixing	VCID-gp1s-m1bh-6fc2	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:15:26.317617+00:00	Debian Importer	Fixing	VCID-9w4x-33np-2fg4	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:14:06.281092+00:00	Debian Importer	Fixing	VCID-y1n3-w6v9-m3cd	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:55:13.433587+00:00	Debian Importer	Fixing	VCID-4xxj-5827-gqck	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:19:51.424838+00:00	Debian Importer	Affected by	VCID-1gkw-3zt3-sbb9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:19:51.412338+00:00	Debian Importer	Affected by	VCID-1qch-uvj9-nucr	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:19:51.400258+00:00	Debian Importer	Affected by	VCID-c1wj-a2qm-wbhr	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:19:51.388008+00:00	Debian Importer	Affected by	VCID-unwy-8b3g-hbbx	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:19:51.368828+00:00	Debian Importer	Affected by	VCID-nbtb-77zf-kkh8	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:18:29.757143+00:00	Debian Importer	Fixing	VCID-hjrp-3yew-wqeg	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:18:28.623825+00:00	Debian Importer	Fixing	VCID-rpzc-ryw1-p7e5	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:15:56.322244+00:00	Debian Importer	Fixing	VCID-82ze-32xz-pqgn	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:15:43.584993+00:00	Debian Importer	Fixing	VCID-gmfp-mzuj-d7gz	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:13:41.819970+00:00	Debian Importer	Fixing	VCID-ffax-863u-skce	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:13:03.578455+00:00	Debian Importer	Fixing	VCID-hs1w-ky4x-rffx	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:12:50.439212+00:00	Debian Importer	Fixing	VCID-g2fk-pmey-ekh9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:12:36.423139+00:00	Debian Importer	Fixing	VCID-daum-72mg-pkhn	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:11:18.626069+00:00	Debian Importer	Fixing	VCID-ezsn-vvex-gkah	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:10:09.932757+00:00	Debian Importer	Fixing	VCID-b6c5-yjhz-x3hh	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:09:45.267191+00:00	Debian Importer	Fixing	VCID-7afj-kkdv-zbez	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:09:45.009231+00:00	Debian Importer	Fixing	VCID-n9y6-p84p-7ke9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:09:03.739419+00:00	Debian Importer	Fixing	VCID-qx9d-jfsn-6fdu	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:06:56.635147+00:00	Debian Importer	Fixing	VCID-vdut-d3k2-c7ex	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:06:56.153011+00:00	Debian Importer	Fixing	VCID-9mjb-81e1-qbau	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:06:53.206842+00:00	Debian Importer	Fixing	VCID-gp1s-m1bh-6fc2	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:04:42.605469+00:00	Debian Importer	Fixing	VCID-9w4x-33np-2fg4	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:04:34.772593+00:00	Debian Importer	Fixing	VCID-y1n3-w6v9-m3cd	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:02:49.321398+00:00	Debian Importer	Fixing	VCID-4xxj-5827-gqck	https://security-tracker.debian.org/tracker/data/json	38.1.0