CNNVD-202601-4262 Information

CNNVD ID

CNNVD-202601-4262

Related CVE

CVE-2026-24401

• CNNVD Published: 2026-01-24

Description (Chinese)

Avahi是Avahi开源的一套用于Linux的本地服务发现工具。 Avahi 0.9rc2及之前版本存在安全漏洞，该漏洞源于发送包含递归CNAME记录的不请自来mDNS响应，可能导致分段违规和堆栈耗尽。

Description (English)

Avahi is an open source set of local service discovery tools for Linux. There is a security loophole in Avahi 0.9rc2 and earlier versions, which stems from the uninvited mDNS response that was sent to CNAME records, which could lead to segment irregularities and the depletion of stacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Avahi

Published

2026-01-24

Last Modified

2026-02-24

References

https://github.com/avahi/avahi/commit/78eab31128479f06e30beb8c1cbf99dd921e2524 https://github.com/avahi/avahi/issues/501 https://github.com/avahi/avahi/security/advisories/GHSA-h4vp-5m8j-f6w3