UbuntuUpdates.org

Package "libavahi-gobject0"

Name: libavahi-gobject0

Description:

Avahi GObject library
Latest version: 0.8-16ubuntu3.1
Release: questing (25.10)
Level: security
Repository: main
Head package: avahi
Homepage: https://avahi.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "libavahi-gobject0"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "libavahi-gobject0" in Questing

Repository Area Version
base main 0.8-16ubuntu3
updates main 0.8-16ubuntu3.1

Changelog

Version: 0.8-16ubuntu3.1 2026-01-19 16:26:04 UTC

  avahi (0.8-16ubuntu3.1) questing-security; urgency=medium

  * SECURITY UPDATE: Denial of service when creating a record browser.
    - debian/patches/CVE-2025-68276.patch: Add AVAHI_LOOKUP_USE_WIDE_AREA and
      wide area use check in avahi-core/browse.c.
    - CVE-2025-68276
  * SECURITY UPDATE: Denial of service after CNAME expiration.
    - debian/patches/CVE-2025-68468.patch: Remove assert in
      avahi-core/browse.c.
    - CVE-2025-68468
  * SECURITY UPDATE: Denial of service on receiving CNAME resource records.
    - debian/patches/CVE-2025-68471.patch: Change assert to return on
      wide_area check in avahi-core/browse.c.
    - CVE-2025-68471

 -- Hlib Korzhynskyy <email address hidden> Thu, 15 Jan 2026 11:54:54 -0330
CVE-2025-68276 Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In 0.9-rc2 and earlier, an unprivileged
CVE-2025-68468 Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In 0.9-rc2 and earlier, avahi-daemon can
CVE-2025-68471 Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In 0.9-rc2 and earlier, avahi-daemon can


About   -   Send Feedback to @ubuntu_updates