Skip to content

CVE-2026-34933 on CTRL-OS 24.05

Packages: avahi

Status: Plausible

CVE Information

Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. Prior to version 0.9-rc4, any unprivileged local user can crash avahi-daemon by sending a single D-Bus method call with conflicting publish flags. This issue has been patched in version 0.9-rc4.

Updates

2026-04-07 23:18 CEST

Metadata changes:

  • Status for package avahi: “Plausible

2026-04-07 23:15 CEST

Metadata changes:

  • Status for package avahi: “Acknowledged

(Amended on: 2026-04-07 23:32 CEST)