Browse all 6 CVE security advisories affecting avahi. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Avahi is a zero-configuration networking implementation commonly used for service discovery on local networks, enabling automatic device detection without manual configuration. Historically, it has been susceptible to remote code execution vulnerabilities through malformed network packets, as well as denial-of-service conditions via resource exhaustion attacks. Several CVEs highlight buffer overflow issues in DNS packet handling and insufficient input validation. While no major public security incidents have been widely documented, the consistent presence of memory corruption flaws in its networking components suggests potential for compromise if exposed to untrusted networks. Its default operation on local networks limits attack surface, but misconfigurations can expose systems to unnecessary risk.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-34933 | Avahi: Reachable assertion in `transport_flags_from_domain()` via conflicting publish flags crashes avahi-daemon — avahiCWE-617 | 5.5 | Medium | 2026-04-03 |
| CVE-2026-24401 | Avahi has Uncontrolled Recursion in lookup_handle_cname function — avahiCWE-674 | 6.5 | Medium | 2026-01-24 |
| CVE-2025-68471 | Avahi has a reachable assertion in lookup_start — avahiCWE-617 | 6.5 | Medium | 2026-01-12 |
| CVE-2025-68468 | Avahi has a reachable assertion in lookup_multicast_callback — avahiCWE-617 | 6.5 | Medium | 2026-01-12 |
| CVE-2025-68276 | Avahi has a reachable assertion in avahi_wide_area_scan_cache — avahiCWE-617 | 5.5 | Medium | 2026-01-12 |
| CVE-2025-59529 | simple protocol server ignores accepts unlimited connections and logs failures without limit — avahiCWE-400 | 5.5 | Medium | 2025-12-18 |
This page lists every published CVE security advisory associated with avahi. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.