CVE-2026-34933

< 0.9

Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. Prior to version 0.9-

5.5MEDIUM

CVE-2026-24401

< 0.9

Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In versions 0.9rc2 an

6.5MEDIUM

CVE-2025-68471

< 0.9

Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In 0.9-rc2 and earlie

6.5MEDIUM

CVE-2025-68468

< 0.9

Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In 0.9-rc2 and earlie

6.5MEDIUM

CVE-2025-68276

< 0.9

Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In 0.9-rc2 and earlie

5.5MEDIUM

CVE-2025-59529

< 0.9

Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In versions up to and

5.5MEDIUM

CVE-2023-38473

< 0.9

A vulnerability was found in Avahi. A reachable assertion exists in the avahi_alternative_host_name() function.

6.2MEDIUM

CVE-2023-38472

< 0.9

A vulnerability was found in Avahi. A reachable assertion exists in the avahi_rdata_parse() function.

6.2MEDIUM

CVE-2023-38471

< 0.9

A vulnerability was found in Avahi. A reachable assertion exists in the dbus_set_host_name function.

6.2MEDIUM

CVE-2023-38470

< 0.9

A vulnerability was found in Avahi. A reachable assertion exists in the avahi_escape_label() function.

6.2MEDIUM

CVE-2023-38469

< 0.9

A vulnerability was found in Avahi, where a reachable assertion exists in avahi_dns_packet_append_record.

6.2MEDIUM

CVE-2023-1981

all versions

A vulnerability was found in the avahi library. This flaw allows an unprivileged user to make a dbus call, causing the avahi daemo

5.5MEDIUM

CVE-2021-3468

>= 0.6 and <= 0.8

A flaw was found in avahi in versions 0.6 up to 0.8. The event used to signal the termination of the client connection on the avah

5.5MEDIUM

CVE-2021-3502

all versions

A flaw was found in avahi 0.8-5. A reachable assertion is present in avahi_s_host_name_resolver_start function allowing a local at

5.5MEDIUM

CVE-2021-26720

<= 0.8-4

avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is executed as root via /etc/network/if-up.d/avahi-daemon, and

7.8HIGH

CVE-2017-6519

<= 0.6.32

avahi-daemon in Avahi through 0.6.32 and 0.7 inadvertently responds to IPv6 unicast queries with source addresses that are not on-

9.1CRITICAL

CVE-2011-1002

<= 0.6.28

avahi-core/socket.c in avahi-daemon in Avahi before 0.6.29 allows remote attackers to cause a denial of service (infinite loop) vi

CVE-2010-2244

all versions

The AvahiDnsPacket function in avahi-core/socket.c in avahi-daemon in Avahi 0.6.16 and 0.6.25 allows remote attackers to cause a d

CVE-2009-0758

all versions

The originates_from_local_legacy_unicast_socket function in avahi-core/server.c in avahi-daemon 0.6.23 does not account for the ne

CVE-2008-5081

<= 0.6.23

The originates_from_local_legacy_unicast_socket function (avahi-core/server.c) in avahi-daemon in Avahi before 0.6.24 allows remot

CVE-2007-3372

<= 0.6.19

The Avahi daemon in Avahi before 0.6.20 allows attackers to cause a denial of service (exit) via empty TXT data over D-Bus, which

CVE-2006-6870

all versions

The consume_labels function in avahi-core/dns.c in Avahi before 0.6.16 allows remote attackers to cause a denial of service (infin

CVE-2006-5461

<= 0.6.14

Avahi before 0.6.15 does not verify the sender identity of netlink messages to ensure that they come from the kernel instead of an

CVE-2006-2289

all versions

Buffer overflow in avahi-core in Avahi before 0.6.10 allows local users to execute arbitrary code via unknown vectors.

CVE-2006-2288

all versions

Avahi before 0.6.10 allows local users to cause a denial of service (mDNS/DNS-SD service disconnect) via unspecified mDNS name con