avahi (SUSE:Linux Enterprise Module for Desktop Applications 15 SP6) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Module for Desktop Applications 15 SP6 package avahi, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2023-38469 — CVSS 6.2 (medium): A vulnerability was found in Avahi, where a reachable assertion exists in avahi_dns_packet_append_record.
CVE-2023-38471 — CVSS 6.2 (medium): A vulnerability was found in Avahi. A reachable assertion exists in the dbus_set_host_name function.
CVE-2024-52615 — CVSS 5.3 (medium): A flaw was found in Avahi-daemon, which relies on fixed source ports for wide-area DNS queries. This issue simplifies attacks where…
CVE-2024-52616 — CVSS 5.3 (medium): A flaw was found in the Avahi-daemon, where it initializes DNS transaction IDs randomly only once at startup, incrementing them…