📦 Avahi

This vulnerability in Debian's avahi package allows local attackers to perform symlink attacks on files under /run/avahi-daemon. Attackers can cause denial of service or create arbitrary empty files b...

A vulnerability in Avahi versions 0.9rc2 and below allows remote attackers to crash the avahi-daemon service via a specially crafted mDNS response containing a recursive CNAME record. This causes a se...

This vulnerability allows remote attackers to crash the Avahi daemon by sending malicious mDNS announcements containing CNAME records with short TTLs. When these records expire, the daemon crashes due...

This vulnerability allows remote attackers to crash the Avahi daemon by sending two specially crafted mDNS announcements with CNAME records two seconds apart. This affects systems running Avahi 0.9-rc...

This vulnerability allows unprivileged local users to crash the Avahi daemon by creating record browsers with the AVAHI_LOOKUP_USE_WIDE_AREA flag set via D-Bus. This affects systems running Avahi 0.9-...

Avahi's simple protocol server ignores the documented client connection limit, allowing unprivileged local users to establish unlimited connections. This can exhaust daemon memory and file descriptors...