VulnerableCode Package Details - pkg:deb/debian/avahi@0.8-5%2Bdeb11u2?distro=trixie

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/avahi@0.8-5%2Bdeb11u2?distro=trixie

Essentials
History (62)

purl	pkg:deb/debian/avahi@0.8-5%2Bdeb11u2?distro=trixie

Next non-vulnerable version	0.8-5+deb11u3
Latest non-vulnerable version	0.8-18
Risk	3.0

Vulnerabilities affecting this package (5)

Vulnerability	Summary	Fixed by
VCID-1gkw-3zt3-sbb9 Aliases: CVE-2026-24401	avahi: Avahi: Denial of Service via recursive CNAME record in mDNS response	0.8-18 Affected by 0 other vulnerabilities.
VCID-1qch-uvj9-nucr Aliases: CVE-2025-68471	avahi: Avahi: Denial of Service via unsolicited CNAME announcements	0.8-18 Affected by 0 other vulnerabilities.
VCID-c1wj-a2qm-wbhr Aliases: CVE-2025-68468	avahi: Avahi: Denial of Service via crafted mDNS/DNS-SD announcements	0.8-18 Affected by 0 other vulnerabilities.
VCID-nbtb-77zf-kkh8 Aliases: CVE-2024-52616	avahi: Avahi Wide-Area DNS Predictable Transaction IDs	0.8-18 Affected by 0 other vulnerabilities.
VCID-unwy-8b3g-hbbx Aliases: CVE-2025-68276	avahi: Avahi: Denial of Service via D-Bus record browsers with AVAHI_LOOKUP_USE_WIDE_AREA flag	0.8-18 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (19)

Vulnerability	Summary	Aliases
VCID-4xxj-5827-gqck	avahi: Reachable assertion in avahi_alternative_host_name	CVE-2023-38473
VCID-7afj-kkdv-zbez	avahi: Multicast DNS responds to unicast queries outside of local network	CVE-2017-6519
VCID-82ze-32xz-pqgn	avahi: Reachable assertion in avahi_dns_packet_append_record	CVE-2023-38469
VCID-9mjb-81e1-qbau	avahi: Reachable assertion in dbus_set_host_name	CVE-2023-38471
VCID-9w4x-33np-2fg4	avahi: Reachable assertion in avahi_escape_label	CVE-2023-38470
VCID-b6c5-yjhz-x3hh	Multiple vulnerabilities were found in Avahi, allowing for Denial of Service.	CVE-2011-1002
VCID-daum-72mg-pkhn	Multiple vulnerabilities were found in Avahi, allowing for Denial of Service.	CVE-2010-2244
VCID-ezsn-vvex-gkah	avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is executed as root via /etc/network/if-up.d/avahi-daemon, and allows a local attacker to cause a denial of service or create arbitrary empty files via a symlink attack on files under /run/avahi-daemon. NOTE: this only affects the packaging for Debian GNU/Linux (used indirectly by SUSE), not the upstream Avahi product.	CVE-2021-26720
VCID-ffax-863u-skce	A Denial of Service vulnerability has been discovered in Avahi.	CVE-2008-5081
VCID-g2fk-pmey-ekh9	avahi: avahi-daemon can be crashed via DBus	CVE-2023-1981
VCID-gmfp-mzuj-d7gz	avahi: Reachable assertion in avahi_rdata_parse	CVE-2023-38472
VCID-gp1s-m1bh-6fc2	avahi: assert fail local DoS via D-Bus	CVE-2007-3372
VCID-hjrp-3yew-wqeg	avahi: reachable assertion in avahi_s_host_name_resolver_start when trying to resolve badly-formatted hostnames	CVE-2021-3502
VCID-hs1w-ky4x-rffx	An error in Avahi might lead to a Denial of Service via network and CPU consumption.	CVE-2009-0758
VCID-n9y6-p84p-7ke9	Avahi before 0.6.10 allows local users to cause a denial of service (mDNS/DNS-SD service disconnect) via unspecified mDNS name conflicts.	CVE-2006-2288
VCID-qx9d-jfsn-6fdu	Avahi fails to verify the origin of netlink messages, which could allow local users to spoof network changes.	CVE-2006-5461
VCID-rpzc-ryw1-p7e5	avahi: Local DoS by event-busy-loop from writing long lines to /run/avahi-daemon/socket	CVE-2021-3468
VCID-vdut-d3k2-c7ex	Buffer overflow in avahi-core in Avahi before 0.6.10 allows local users to execute arbitrary code via unknown vectors.	CVE-2006-2289
VCID-y1n3-w6v9-m3cd	The consume_labels function in avahi-core/dns.c in Avahi before 0.6.16 allows remote attackers to cause a denial of service (infinite loop) via a crafted compressed DNS response with a label that points to itself.	CVE-2006-6870

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T13:25:21.247813+00:00	Debian Importer	Fixing	VCID-hjrp-3yew-wqeg	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T13:24:50.078160+00:00	Debian Importer	Fixing	VCID-rpzc-ryw1-p7e5	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:42:37.407485+00:00	Debian Importer	Fixing	VCID-82ze-32xz-pqgn	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:38:46.142806+00:00	Debian Importer	Fixing	VCID-gmfp-mzuj-d7gz	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:04:47.775986+00:00	Debian Importer	Fixing	VCID-ffax-863u-skce	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:53:57.340363+00:00	Debian Importer	Fixing	VCID-hs1w-ky4x-rffx	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:50:27.719955+00:00	Debian Importer	Fixing	VCID-g2fk-pmey-ekh9	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:44:14.991388+00:00	Debian Importer	Fixing	VCID-daum-72mg-pkhn	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:21:26.859085+00:00	Debian Importer	Fixing	VCID-ezsn-vvex-gkah	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:01:45.168419+00:00	Debian Importer	Fixing	VCID-b6c5-yjhz-x3hh	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:52:52.739496+00:00	Debian Importer	Fixing	VCID-7afj-kkdv-zbez	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:52:45.974780+00:00	Debian Importer	Fixing	VCID-n9y6-p84p-7ke9	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:41:00.367296+00:00	Debian Importer	Fixing	VCID-qx9d-jfsn-6fdu	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:04:38.102021+00:00	Debian Importer	Fixing	VCID-vdut-d3k2-c7ex	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:04:14.362222+00:00	Debian Importer	Fixing	VCID-9mjb-81e1-qbau	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:03:51.877532+00:00	Debian Importer	Fixing	VCID-gp1s-m1bh-6fc2	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:22:07.995437+00:00	Debian Importer	Fixing	VCID-9w4x-33np-2fg4	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:19:58.087110+00:00	Debian Importer	Fixing	VCID-y1n3-w6v9-m3cd	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:48:41.075030+00:00	Debian Importer	Fixing	VCID-4xxj-5827-gqck	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T09:15:32.685383+00:00	Debian Importer	Fixing	VCID-hjrp-3yew-wqeg	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T09:15:09.290552+00:00	Debian Importer	Fixing	VCID-rpzc-ryw1-p7e5	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:42:49.646984+00:00	Debian Importer	Fixing	VCID-82ze-32xz-pqgn	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:39:57.338970+00:00	Debian Importer	Fixing	VCID-gmfp-mzuj-d7gz	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:15:17.866907+00:00	Debian Importer	Fixing	VCID-ffax-863u-skce	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:07:23.060015+00:00	Debian Importer	Fixing	VCID-hs1w-ky4x-rffx	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:04:53.713197+00:00	Debian Importer	Fixing	VCID-g2fk-pmey-ekh9	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:00:06.011760+00:00	Debian Importer	Fixing	VCID-daum-72mg-pkhn	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:43:55.479631+00:00	Debian Importer	Fixing	VCID-ezsn-vvex-gkah	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:29:13.845648+00:00	Debian Importer	Fixing	VCID-b6c5-yjhz-x3hh	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:22:18.345229+00:00	Debian Importer	Fixing	VCID-7afj-kkdv-zbez	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:22:13.458117+00:00	Debian Importer	Fixing	VCID-n9y6-p84p-7ke9	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:13:36.195979+00:00	Debian Importer	Fixing	VCID-qx9d-jfsn-6fdu	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:45:43.182159+00:00	Debian Importer	Fixing	VCID-vdut-d3k2-c7ex	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:45:24.415981+00:00	Debian Importer	Fixing	VCID-9mjb-81e1-qbau	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:45:07.045911+00:00	Debian Importer	Fixing	VCID-gp1s-m1bh-6fc2	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:15:26.290748+00:00	Debian Importer	Fixing	VCID-9w4x-33np-2fg4	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:14:06.270680+00:00	Debian Importer	Fixing	VCID-y1n3-w6v9-m3cd	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:55:13.405569+00:00	Debian Importer	Fixing	VCID-4xxj-5827-gqck	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:19:51.421954+00:00	Debian Importer	Affected by	VCID-1gkw-3zt3-sbb9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:19:51.409447+00:00	Debian Importer	Affected by	VCID-1qch-uvj9-nucr	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:19:51.397374+00:00	Debian Importer	Affected by	VCID-c1wj-a2qm-wbhr	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:19:51.385093+00:00	Debian Importer	Affected by	VCID-unwy-8b3g-hbbx	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:19:51.365903+00:00	Debian Importer	Affected by	VCID-nbtb-77zf-kkh8	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:18:29.734393+00:00	Debian Importer	Fixing	VCID-hjrp-3yew-wqeg	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:18:28.603044+00:00	Debian Importer	Fixing	VCID-rpzc-ryw1-p7e5	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:15:56.296548+00:00	Debian Importer	Fixing	VCID-82ze-32xz-pqgn	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:15:43.559429+00:00	Debian Importer	Fixing	VCID-gmfp-mzuj-d7gz	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:13:41.806690+00:00	Debian Importer	Fixing	VCID-ffax-863u-skce	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:13:03.565694+00:00	Debian Importer	Fixing	VCID-hs1w-ky4x-rffx	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:12:50.412903+00:00	Debian Importer	Fixing	VCID-g2fk-pmey-ekh9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:12:36.412450+00:00	Debian Importer	Fixing	VCID-daum-72mg-pkhn	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:11:18.615798+00:00	Debian Importer	Fixing	VCID-ezsn-vvex-gkah	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:10:09.920159+00:00	Debian Importer	Fixing	VCID-b6c5-yjhz-x3hh	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:09:45.254952+00:00	Debian Importer	Fixing	VCID-7afj-kkdv-zbez	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:09:44.999381+00:00	Debian Importer	Fixing	VCID-n9y6-p84p-7ke9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:09:03.729810+00:00	Debian Importer	Fixing	VCID-qx9d-jfsn-6fdu	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:06:56.625716+00:00	Debian Importer	Fixing	VCID-vdut-d3k2-c7ex	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:06:56.129035+00:00	Debian Importer	Fixing	VCID-9mjb-81e1-qbau	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:06:53.197410+00:00	Debian Importer	Fixing	VCID-gp1s-m1bh-6fc2	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:04:42.581474+00:00	Debian Importer	Fixing	VCID-9w4x-33np-2fg4	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:04:34.761965+00:00	Debian Importer	Fixing	VCID-y1n3-w6v9-m3cd	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:02:49.293394+00:00	Debian Importer	Fixing	VCID-4xxj-5827-gqck	https://security-tracker.debian.org/tracker/data/json	38.1.0