VulnerableCode Package Details - pkg:deb/debian/avahi@0.8-4?distro=trixie

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/avahi@0.8-4?distro=trixie

Essentials
History (3)

purl	pkg:deb/debian/avahi@0.8-4?distro=trixie

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-ezsn-vvex-gkah	avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is executed as root via /etc/network/if-up.d/avahi-daemon, and allows a local attacker to cause a denial of service or create arbitrary empty files via a symlink attack on files under /run/avahi-daemon. NOTE: this only affects the packaging for Debian GNU/Linux (used indirectly by SUSE), not the upstream Avahi product.	CVE-2021-26720

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T11:21:26.853623+00:00	Debian Importer	Fixing	VCID-ezsn-vvex-gkah	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T07:43:55.474097+00:00	Debian Importer	Fixing	VCID-ezsn-vvex-gkah	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-02T17:11:18.610673+00:00	Debian Importer	Fixing	VCID-ezsn-vvex-gkah	https://security-tracker.debian.org/tracker/data/json	38.1.0