avahi

Top products

The 15 most recently published vulnerabilities affecting avahi.

• CVE-2026-34933Avahi: Reachable assertion in `transport_flags_from_domain()` via conflicting publish flags crashes avahi-daemon5.5Apr 3, 2026
• CVE-2026-24401Avahi has Uncontrolled Recursion in lookup_handle_cname function6.5Jan 24, 2026
• CVE-2025-68471Avahi has a reachable assertion in lookup_start6.5Jan 12, 2026
• CVE-2025-68468Avahi has a reachable assertion in lookup_multicast_callback6.5Jan 12, 2026
• CVE-2025-68276Avahi has a reachable assertion in avahi_wide_area_scan_cache5.5Jan 12, 2026
• CVE-2025-59529simple protocol server ignores accepts unlimited connections and logs failures without limit5.5Dec 18, 2025
• CVE-2023-38473Reachable assertion in avahi_alternative_host_name6.2Nov 2, 2023
• CVE-2023-38472Reachable assertion in avahi_rdata_parse6.2Nov 2, 2023
• CVE-2023-38471Reachable assertion in dbus_set_host_name6.2Nov 2, 2023
• CVE-2023-38470Reachable assertion in avahi_escape_label6.2Nov 2, 2023
• CVE-2023-38469Reachable assertion in avahi_dns_packet_append_record6.2Nov 2, 2023
• CVE-2023-1981A vulnerability was found in the avahi library. This flaw allows an unprivileged user to make a dbus call, causing the avahi daemon to crash.5.5May 26, 2023
• CVE-2021-3468A flaw was found in avahi in versions 0.6 up to 0.8. The event used to signal the termination of the client connection on the avahi Unix socket is not correctly handled in the client_work function,...5.5Jun 2, 2021
• CVE-2021-3502A flaw was found in avahi 0.8-5. A reachable assertion is present in avahi_s_host_name_resolver_start function allowing a local attacker to crash the avahi service by requesting hostname resolution...5.5May 7, 2021
• CVE-2021-26720avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is executed as root via /etc/network/if-up.d/avahi-daemon, and allows a local attacker to cause a denial of service or create arb...7.8Feb 17, 2021