CNNVD-202512-3360 Information

CNNVD ID

CNNVD-202512-3360

Related CVE

CVE-2025-59529

• CNNVD Published: 2025-12-18

Description (Chinese)

Avahi是Avahi开源的一套用于Linux的本地服务发现工具。 Avahi 0.9-rc2及之前版本存在资源管理错误漏洞，该漏洞源于无条件接受连接且未检查客户端限制，可能导致本地拒绝服务。

Description (English)

Avahi is an open source set of local service discovery tools for Linux. Avahi 0.9-rc2 and previous versions had an error in resource management, which stemmed from unconditional acceptance of connections and failure to check client restrictions, which could lead to local denial of services.

Hazard Level

High

Vulnerability Type

资源管理错误

Affected Vendor

Avahi

Published

2025-12-18

Last Modified

2026-02-24

References

https://zeropath.com/blog/avahi-simple-protocol-server-dos-cve-2025-59529 https://github.com/avahi/avahi/pull/808 https://github.com/avahi/avahi/security/advisories/GHSA-73wf-3xmj-x82q https://access.redhat.com/security/cve/cve-2025-59529