Information on source package avahi

Available versions

ReleaseVersion
buster0.7-4+deb10u1
buster (security)0.7-4+deb10u3
bullseye0.8-5+deb11u2
bookworm0.8-10
trixie0.8-13
sid0.8-13

Open issues

BugbusterbullseyebookwormtrixiesidDescription
CVE-2023-38473vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableA vulnerability was found in Avahi. A reachable assertion exists in th ...
CVE-2023-38472vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableA vulnerability was found in Avahi. A reachable assertion exists in th ...
CVE-2023-38471vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableA vulnerability was found in Avahi. A reachable assertion exists in th ...
CVE-2023-38470vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableA vulnerability was found in Avahi. A reachable assertion exists in th ...
CVE-2023-38469vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableA vulnerability was found in Avahi, where a reachable assertion exists ...
CVE-2023-1981fixedvulnerable (no DSA)fixedfixedfixedA vulnerability was found in the avahi library. This flaw allows an un ...

Open unimportant issues

BugbusterbullseyebookwormtrixiesidDescription
CVE-2017-6519vulnerablefixedfixedfixedfixedavahi-daemon in Avahi through 0.6.32 and 0.7 inadvertently responds to ...

Resolved issues

BugDescription
CVE-2021-26720avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is ...
CVE-2021-3502A flaw was found in avahi 0.8-5. A reachable assertion is present in a ...
CVE-2021-3468A flaw was found in avahi in versions 0.6 up to 0.8. The event used to ...
CVE-2011-1002avahi-core/socket.c in avahi-daemon in Avahi before 0.6.29 allows remo ...
CVE-2010-2244The AvahiDnsPacket function in avahi-core/socket.c in avahi-daemon in ...
CVE-2009-0758The originates_from_local_legacy_unicast_socket function in avahi-core ...
CVE-2008-5081The originates_from_local_legacy_unicast_socket function (avahi-core/s ...
CVE-2007-3372The Avahi daemon in Avahi before 0.6.20 allows attackers to cause a de ...
CVE-2006-6870The consume_labels function in avahi-core/dns.c in Avahi before 0.6.16 ...
CVE-2006-5461Avahi before 0.6.15 does not verify the sender identity of netlink mes ...
CVE-2006-2289Buffer overflow in avahi-core in Avahi before 0.6.10 allows local user ...
CVE-2006-2288Avahi before 0.6.10 allows local users to cause a denial of service (m ...

Security announcements

DSA / DLADescription
DLA-3466-1avahi - security update
DLA-3414-1avahi - security update
DLA-3047-1avahi - security update
DSA-2174-1avahi - denial of service
DSA-2086-1avahi - denial of service
DSA-1690-1avahi - denial of service

Search for package or bug name: Reporting problems