Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/avahi@0.8-5%2Bdeb11u2
purl pkg:deb/debian/avahi@0.8-5%2Bdeb11u2
Next non-vulnerable version 0.8-18
Latest non-vulnerable version 0.8-18
Risk 3.0
Vulnerabilities affecting this package (11)
Vulnerability Summary Fixed by
VCID-1gkw-3zt3-sbb9
Aliases:
CVE-2026-24401
avahi: Avahi: Denial of Service via recursive CNAME record in mDNS response
0.8-18
Affected by 0 other vulnerabilities.
VCID-1qch-uvj9-nucr
Aliases:
CVE-2025-68471
avahi: Avahi: Denial of Service via unsolicited CNAME announcements
0.8-18
Affected by 0 other vulnerabilities.
VCID-4xxj-5827-gqck
Aliases:
CVE-2023-38473
avahi: Reachable assertion in avahi_alternative_host_name
0.8-10+deb12u1
Affected by 5 other vulnerabilities.
VCID-82ze-32xz-pqgn
Aliases:
CVE-2023-38469
avahi: Reachable assertion in avahi_dns_packet_append_record
0.8-10+deb12u1
Affected by 5 other vulnerabilities.
VCID-9mjb-81e1-qbau
Aliases:
CVE-2023-38471
avahi: Reachable assertion in dbus_set_host_name
0.8-10+deb12u1
Affected by 5 other vulnerabilities.
VCID-9w4x-33np-2fg4
Aliases:
CVE-2023-38470
avahi: Reachable assertion in avahi_escape_label
0.8-10+deb12u1
Affected by 5 other vulnerabilities.
VCID-c1wj-a2qm-wbhr
Aliases:
CVE-2025-68468
avahi: Avahi: Denial of Service via crafted mDNS/DNS-SD announcements
0.8-18
Affected by 0 other vulnerabilities.
VCID-g2fk-pmey-ekh9
Aliases:
CVE-2023-1981
avahi: avahi-daemon can be crashed via DBus
0.8-10+deb12u1
Affected by 5 other vulnerabilities.
VCID-gmfp-mzuj-d7gz
Aliases:
CVE-2023-38472
avahi: Reachable assertion in avahi_rdata_parse
0.8-10+deb12u1
Affected by 5 other vulnerabilities.
VCID-nbtb-77zf-kkh8
Aliases:
CVE-2024-52616
avahi: Avahi Wide-Area DNS Predictable Transaction IDs
0.8-18
Affected by 0 other vulnerabilities.
VCID-unwy-8b3g-hbbx
Aliases:
CVE-2025-68276
avahi: Avahi: Denial of Service via D-Bus record browsers with AVAHI_LOOKUP_USE_WIDE_AREA flag
0.8-18
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (4)
Vulnerability Summary Aliases
VCID-7afj-kkdv-zbez avahi: Multicast DNS responds to unicast queries outside of local network CVE-2017-6519
VCID-ezsn-vvex-gkah avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is executed as root via /etc/network/if-up.d/avahi-daemon, and allows a local attacker to cause a denial of service or create arbitrary empty files via a symlink attack on files under /run/avahi-daemon. NOTE: this only affects the packaging for Debian GNU/Linux (used indirectly by SUSE), not the upstream Avahi product. CVE-2021-26720
VCID-hjrp-3yew-wqeg avahi: reachable assertion in avahi_s_host_name_resolver_start when trying to resolve badly-formatted hostnames CVE-2021-3502
VCID-rpzc-ryw1-p7e5 avahi: Local DoS by event-busy-loop from writing long lines to /run/avahi-daemon/socket CVE-2021-3468

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T00:08:19.723927+00:00 Debian Oval Importer Fixing VCID-7afj-kkdv-zbez https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:52:15.222151+00:00 Debian Oval Importer Fixing VCID-ezsn-vvex-gkah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:05:59.922706+00:00 Debian Oval Importer Affected by VCID-gmfp-mzuj-d7gz https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:06:23.596622+00:00 Debian Oval Importer Affected by VCID-9w4x-33np-2fg4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:31:24.322295+00:00 Debian Oval Importer Fixing VCID-rpzc-ryw1-p7e5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:43:45.544866+00:00 Debian Oval Importer Affected by VCID-4xxj-5827-gqck https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:56:35.723544+00:00 Debian Oval Importer Fixing VCID-hjrp-3yew-wqeg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:13:51.682998+00:00 Debian Oval Importer Affected by VCID-g2fk-pmey-ekh9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:12:32.896757+00:00 Debian Oval Importer Affected by VCID-9mjb-81e1-qbau https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:59:59.818179+00:00 Debian Oval Importer Affected by VCID-82ze-32xz-pqgn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-13T08:55:21.632587+00:00 Debian Importer Affected by VCID-1qch-uvj9-nucr https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:43:01.698424+00:00 Debian Importer Affected by VCID-unwy-8b3g-hbbx https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:33:26.530187+00:00 Debian Importer Affected by VCID-nbtb-77zf-kkh8 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:03:45.651305+00:00 Debian Importer Affected by VCID-1gkw-3zt3-sbb9 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T23:42:17.913627+00:00 Debian Oval Importer Fixing VCID-7afj-kkdv-zbez https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T22:28:47.466050+00:00 Debian Oval Importer Fixing VCID-ezsn-vvex-gkah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T21:43:59.790170+00:00 Debian Oval Importer Affected by VCID-gmfp-mzuj-d7gz https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:46:25.466119+00:00 Debian Oval Importer Affected by VCID-9w4x-33np-2fg4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:12:45.763897+00:00 Debian Oval Importer Fixing VCID-rpzc-ryw1-p7e5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T19:26:13.765394+00:00 Debian Oval Importer Affected by VCID-4xxj-5827-gqck https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:40:50.204267+00:00 Debian Oval Importer Fixing VCID-hjrp-3yew-wqeg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:06:50.104397+00:00 Debian Importer Affected by VCID-c1wj-a2qm-wbhr https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T17:59:17.210818+00:00 Debian Oval Importer Affected by VCID-g2fk-pmey-ekh9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:57:59.958879+00:00 Debian Oval Importer Affected by VCID-9mjb-81e1-qbau https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T16:46:36.040431+00:00 Debian Oval Importer Affected by VCID-82ze-32xz-pqgn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-08T23:14:45.871838+00:00 Debian Oval Importer Fixing VCID-7afj-kkdv-zbez https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T22:04:32.099562+00:00 Debian Oval Importer Fixing VCID-ezsn-vvex-gkah https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:21:50.091409+00:00 Debian Oval Importer Affected by VCID-gmfp-mzuj-d7gz https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:26:11.700647+00:00 Debian Oval Importer Affected by VCID-9w4x-33np-2fg4 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:53:55.923629+00:00 Debian Oval Importer Fixing VCID-rpzc-ryw1-p7e5 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:09:47.348127+00:00 Debian Oval Importer Affected by VCID-4xxj-5827-gqck https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:25:59.309263+00:00 Debian Oval Importer Fixing VCID-hjrp-3yew-wqeg https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:45:59.493057+00:00 Debian Oval Importer Affected by VCID-g2fk-pmey-ekh9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:44:45.623396+00:00 Debian Oval Importer Affected by VCID-9mjb-81e1-qbau https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T16:36:54.220177+00:00 Debian Oval Importer Affected by VCID-82ze-32xz-pqgn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-02T17:16:52.677603+00:00 Debian Importer Affected by VCID-1qch-uvj9-nucr https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:15:59.352481+00:00 Debian Importer Affected by VCID-unwy-8b3g-hbbx https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:15:14.599118+00:00 Debian Importer Affected by VCID-nbtb-77zf-kkh8 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:08:16.481551+00:00 Debian Importer Affected by VCID-1gkw-3zt3-sbb9 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:03:55.851012+00:00 Debian Importer Affected by VCID-c1wj-a2qm-wbhr https://security-tracker.debian.org/tracker/data/json 38.1.0