CVE-2026-24401 | Avahi up to 0.9rc2 mDNS/DNS-SD lookup_handle_cname recursion (ID 501)

Inserito da Angelo Barbosa | Gen 24, 2026 | CVE

A vulnerability marked as problematic has been reported in Avahi up to 0.9rc2. Impacted is the function lookup_handle_cname of the component mDNS/DNS-SD. This manipulation causes uncontrolled recursion.

This vulnerability is tracked as CVE-2026-24401. The attack is possible to be carried out remotely. No exploit exists.

To fix this issue, it is recommended to deploy a patch.

CVE-2026-24401 | Avahi up to 0.9rc2 mDNS/DNS-SD lookup_handle_cname recursion (ID 501)

Post correlati

CVE-2023-51939 | Relic relic-toolkit 0.6.0 relic_cp_bbs.c cp_bbs_sig Privilege Escalation

CVE-2025-41242 | VMware Spring Framework up to 5.3.43/6.0.29/6.1.21/6.2.9 Servlet Container path traversal

CVE-2024-38461 | iRODS up to 4.3.1 irodsServerMonPerf Privilege Escalation

CVE-2025-37992 | Linux Kernel up to 5.15.183/6.1.139/6.6.91/6.12.29/6.14.7 net_sched change null pointer dereference