CVE & CISA-KEV Catalog

CVE-2026-24401

MEDIUM
6.5
CVSS v3
NVD

Description

Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In versions 0.9rc2 and below, avahi-daemon can be crashed via a segmentation fault by sending an unsolicited mDNS response containing a recursive CNAME record, where the alias and canonical name point to the same domain (e.g., "h.local" as a CNAME for "h.local"). This causes unbounded recursion in the lookup_handle_cname function, leading to stack exhaustion. The vulnerability affects record browsers where AVAHI_LOOKUP_USE_MULTICAST is set explicitly, which includes record browsers created by resolvers used by nss-mdns. This issue is patched in commit 78eab31128479f06e30beb8c1cbf99dd921e2524.

How to fix

Remediation Available
avahiDebian
Fixed in:0.8-18CVE-2026-24401
avahiRed Hat / RHEL
Fixed in:main@srcRHSA-2026:11316
Fixed in:main@x86_64RHSA-2026:11316
Fixed in:main@aarch64RHSA-2026:11316
avahiRocky
Fixed in:main@aarch64RHSA-2026:11316
Fixed in:main@srcRHSA-2026:11316
Fixed in:main@x86_64RHSA-2026:11316
avahiUbuntu
Fixed in:0.6.31-4ubuntu1.3+esm5USN-8269-1
Fixed in:0.6.32~rc+dfsg-1ubuntu2.3+esm5USN-8269-1
Fixed in:0.7-3.1ubuntu1.3+esm4USN-8269-1
Fixed in:0.7-4ubuntu7.3+esm2USN-8269-1
Fixed in:0.8-5ubuntu5.5USN-8269-1
Fixed in:0.8-13ubuntu6.2USN-8269-1
Fixed in:0.8-16ubuntu3.2USN-8269-1
avahi-daemonUbuntu
Fixed in:0.6.31-4ubuntu1.3+esm5USN-8269-1
Fixed in:0.6.32~rc+dfsg-1ubuntu2.3+esm5USN-8269-1
Fixed in:0.7-3.1ubuntu1.3+esm4USN-8269-1
Fixed in:0.7-4ubuntu7.3+esm2USN-8269-1
Fixed in:0.8-5ubuntu5.5USN-8269-1
Fixed in:0.8-13ubuntu6.2USN-8269-1
Fixed in:0.8-16ubuntu3.2USN-8269-1

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredNone
User InteractionRequired
ScopeUnchanged

Impact

ConfidentialityNone
IntegrityNone
AvailabilityHigh

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Exploit Intelligence

0.25%probability of exploitation in 30 days
16thpercentile

Low risk: more likely to be exploited than 16% of all known CVEs.

References

Vendor Advisory1

Related Vulnerabilities

Other CWE-674 vulnerabilities, ordered by exploit likelihood. View all

CVESeverityCVSSEPSSExploitedFix
CVE-2021-45105Medium5.9100%-Fix
CVE-2024-25111High8.665%-Fix
CVE-2023-50269High8.658%-Fix
CVE-2021-42697High7.536%-Fix
CVE-2018-0739Medium6.519%-Fix
CVE-2007-1285High7.518%-Fix
Embed a live status badge for CVE-2026-24401
CVE-2026-24401 severity badge

Markdown

[![CVE-2026-24401](https://tridentstack.com/cve/badge/CVE-2026-24401.svg)](https://tridentstack.com/cve/CVE-2026-24401)

HTML

<a href="https://tridentstack.com/cve/CVE-2026-24401"><img src="https://tridentstack.com/cve/badge/CVE-2026-24401.svg" alt="CVE-2026-24401"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2026-02-12.