CVE-2026-24401 | Avahi up to 0.9rc2 mDNS/DNS-SD lookup_handle_cname recursion (ID 501 / EUVD-2026-4603)
A vulnerability marked as problematic has been reported in Avahi up to 0.9rc2. Impacted is the function lookup_handle_cname of the component mDNS/DNS-SD. This manipulation causes uncontrolled recursion.
This vulnerability is tracked as CVE-2026-24401. The attack is possible to be carried out remotely. No exploit exists.
To fix this issue, it is recommended to deploy a patch.