UBUNTU-CVE-2024-52616
- Source
- https://ubuntu.com/security/CVE-2024-52616
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-52616.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2024-52616
- Upstream
- Published
- 2024-11-21T21:15:00Z
- Modified
- 2026-04-22T18:38:52.532953Z
- Severity
-
- 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVSS Calculator
- Ubuntu - low
- Summary
- [none]
- Details
-
A flaw was found in the Avahi-daemon, where it initializes DNS transaction IDs randomly only once at startup, incrementing them sequentially after that. This predictable behavior facilitates DNS spoofing attacks, allowing attackers to guess transaction IDs.
- References
Affected packages
Ubuntu:22.04:LTS
avahi
Package
- Name
- avahi
- Purl
- pkg:deb/ubuntu/avahi@0.8-5ubuntu5.4?arch=source&distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
0.*
0.8-5ubuntu4
0.8-5ubuntu5
0.8-5ubuntu5.1
0.8-5ubuntu5.2
0.8-5ubuntu5.3
0.8-5ubuntu5.4
Ecosystem specific
{
"priority_reason": "This is a low severity issue with a work-around",
"binaries": [
{
"binary_name": "avahi-autoipd",
"binary_version": "0.8-5ubuntu5.4"
},
{
"binary_name": "avahi-daemon",
"binary_version": "0.8-5ubuntu5.4"
},
{
"binary_name": "avahi-discover",
"binary_version": "0.8-5ubuntu5.4"
},
{
"binary_name": "avahi-dnsconfd",
"binary_version": "0.8-5ubuntu5.4"
},
{
"binary_name": "avahi-ui-utils",
"binary_version": "0.8-5ubuntu5.4"
},
{
"binary_name": "avahi-utils",
"binary_version": "0.8-5ubuntu5.4"
},
{
"binary_name": "gir1.2-avahi-0.6",
"binary_version": "0.8-5ubuntu5.4"
},
{
"binary_name": "libavahi-client3",
"binary_version": "0.8-5ubuntu5.4"
},
{
"binary_name": "libavahi-common-data",
"binary_version": "0.8-5ubuntu5.4"
},
{
"binary_name": "libavahi-common3",
"binary_version": "0.8-5ubuntu5.4"
},
{
"binary_name": "libavahi-compat-libdnssd1",
"binary_version": "0.8-5ubuntu5.4"
},
{
"binary_name": "libavahi-core7",
"binary_version": "0.8-5ubuntu5.4"
},
{
"binary_name": "libavahi-glib1",
"binary_version": "0.8-5ubuntu5.4"
},
{
"binary_name": "libavahi-gobject0",
"binary_version": "0.8-5ubuntu5.4"
},
{
"binary_name": "libavahi-ui-gtk3-0",
"binary_version": "0.8-5ubuntu5.4"
},
{
"binary_name": "python3-avahi",
"binary_version": "0.8-5ubuntu5.4"
}
]
}Ubuntu:24.04:LTS
avahi
Package
- Name
- avahi
- Purl
- pkg:deb/ubuntu/avahi@0.8-13ubuntu6.1?arch=source&distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
0.*
0.8-10ubuntu1
0.8-13ubuntu1
0.8-13ubuntu2
0.8-13ubuntu4
0.8-13ubuntu5
0.8-13ubuntu6
0.8-13ubuntu6.1
Ecosystem specific
{
"priority_reason": "This is a low severity issue with a work-around",
"binaries": [
{
"binary_name": "avahi-autoipd",
"binary_version": "0.8-13ubuntu6.1"
},
{
"binary_name": "avahi-daemon",
"binary_version": "0.8-13ubuntu6.1"
},
{
"binary_name": "avahi-discover",
"binary_version": "0.8-13ubuntu6.1"
},
{
"binary_name": "avahi-dnsconfd",
"binary_version": "0.8-13ubuntu6.1"
},
{
"binary_name": "avahi-ui-utils",
"binary_version": "0.8-13ubuntu6.1"
},
{
"binary_name": "avahi-utils",
"binary_version": "0.8-13ubuntu6.1"
},
{
"binary_name": "gir1.2-avahi-0.6",
"binary_version": "0.8-13ubuntu6.1"
},
{
"binary_name": "libavahi-client3",
"binary_version": "0.8-13ubuntu6.1"
},
{
"binary_name": "libavahi-common-data",
"binary_version": "0.8-13ubuntu6.1"
},
{
"binary_name": "libavahi-common3",
"binary_version": "0.8-13ubuntu6.1"
},
{
"binary_name": "libavahi-compat-libdnssd1",
"binary_version": "0.8-13ubuntu6.1"
},
{
"binary_name": "libavahi-core7",
"binary_version": "0.8-13ubuntu6.1"
},
{
"binary_name": "libavahi-glib1",
"binary_version": "0.8-13ubuntu6.1"
},
{
"binary_name": "libavahi-gobject0",
"binary_version": "0.8-13ubuntu6.1"
},
{
"binary_name": "libavahi-ui-gtk3-0",
"binary_version": "0.8-13ubuntu6.1"
},
{
"binary_name": "python3-avahi",
"binary_version": "0.8-13ubuntu6.1"
}
]
}Ubuntu:25.10
avahi
Package
- Name
- avahi
- Purl
- pkg:deb/ubuntu/avahi@0.8-16ubuntu3.1?arch=source&distro=questing
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"priority_reason": "This is a low severity issue with a work-around",
"binaries": [
{
"binary_name": "avahi-autoipd",
"binary_version": "0.8-16ubuntu3.1"
},
{
"binary_name": "avahi-daemon",
"binary_version": "0.8-16ubuntu3.1"
},
{
"binary_name": "avahi-discover",
"binary_version": "0.8-16ubuntu3.1"
},
{
"binary_name": "avahi-dnsconfd",
"binary_version": "0.8-16ubuntu3.1"
},
{
"binary_name": "avahi-ui-utils",
"binary_version": "0.8-16ubuntu3.1"
},
{
"binary_name": "avahi-utils",
"binary_version": "0.8-16ubuntu3.1"
},
{
"binary_name": "gir1.2-avahi-0.6",
"binary_version": "0.8-16ubuntu3.1"
},
{
"binary_name": "libavahi-client3",
"binary_version": "0.8-16ubuntu3.1"
},
{
"binary_name": "libavahi-common-data",
"binary_version": "0.8-16ubuntu3.1"
},
{
"binary_name": "libavahi-common3",
"binary_version": "0.8-16ubuntu3.1"
},
{
"binary_name": "libavahi-compat-libdnssd1",
"binary_version": "0.8-16ubuntu3.1"
},
{
"binary_name": "libavahi-core7",
"binary_version": "0.8-16ubuntu3.1"
},
{
"binary_name": "libavahi-glib1",
"binary_version": "0.8-16ubuntu3.1"
},
{
"binary_name": "libavahi-gobject0",
"binary_version": "0.8-16ubuntu3.1"
},
{
"binary_name": "libavahi-ui-gtk3-0",
"binary_version": "0.8-16ubuntu3.1"
},
{
"binary_name": "python3-avahi",
"binary_version": "0.8-16ubuntu3.1"
}
]
}Ubuntu:Pro:14.04:LTS
avahi
Package
- Name
- avahi
- Purl
- pkg:deb/ubuntu/avahi@0.6.31-4ubuntu1.3+esm4?arch=source&distro=esm-infra-legacy/trusty
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
0.*
0.6.31-2ubuntu4
0.6.31-2ubuntu5
0.6.31-3ubuntu1
0.6.31-4ubuntu1
0.6.31-4ubuntu1.1
0.6.31-4ubuntu1.2
0.6.31-4ubuntu1.3
0.6.31-4ubuntu1.3+esm1
0.6.31-4ubuntu1.3+esm2
0.6.31-4ubuntu1.3+esm3
0.6.31-4ubuntu1.3+esm4
Ecosystem specific
{
"priority_reason": "This is a low severity issue with a work-around",
"binaries": [
{
"binary_name": "avahi-autoipd",
"binary_version": "0.6.31-4ubuntu1.3+esm4"
},
{
"binary_name": "avahi-daemon",
"binary_version": "0.6.31-4ubuntu1.3+esm4"
},
{
"binary_name": "avahi-discover",
"binary_version": "0.6.31-4ubuntu1.3+esm4"
},
{
"binary_name": "avahi-dnsconfd",
"binary_version": "0.6.31-4ubuntu1.3+esm4"
},
{
"binary_name": "avahi-ui-utils",
"binary_version": "0.6.31-4ubuntu1.3+esm4"
},
{
"binary_name": "avahi-utils",
"binary_version": "0.6.31-4ubuntu1.3+esm4"
},
{
"binary_name": "libavahi-client3",
"binary_version": "0.6.31-4ubuntu1.3+esm4"
},
{
"binary_name": "libavahi-common-data",
"binary_version": "0.6.31-4ubuntu1.3+esm4"
},
{
"binary_name": "libavahi-common3",
"binary_version": "0.6.31-4ubuntu1.3+esm4"
},
{
"binary_name": "libavahi-compat-libdnssd1",
"binary_version": "0.6.31-4ubuntu1.3+esm4"
},
{
"binary_name": "libavahi-core7",
"binary_version": "0.6.31-4ubuntu1.3+esm4"
},
{
"binary_name": "libavahi-glib1",
"binary_version": "0.6.31-4ubuntu1.3+esm4"
},
{
"binary_name": "libavahi-gobject0",
"binary_version": "0.6.31-4ubuntu1.3+esm4"
},
{
"binary_name": "libavahi-qt4-1",
"binary_version": "0.6.31-4ubuntu1.3+esm4"
},
{
"binary_name": "libavahi-ui-gtk3-0",
"binary_version": "0.6.31-4ubuntu1.3+esm4"
},
{
"binary_name": "libavahi-ui0",
"binary_version": "0.6.31-4ubuntu1.3+esm4"
},
{
"binary_name": "python-avahi",
"binary_version": "0.6.31-4ubuntu1.3+esm4"
}
]
}Ubuntu:Pro:16.04:LTS
avahi
Package
- Name
- avahi
- Purl
- pkg:deb/ubuntu/avahi@0.6.32~rc+dfsg-1ubuntu2.3+esm4?arch=source&distro=esm-infra/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
0.*
0.6.31-4ubuntu4
0.6.32~rc+dfsg-1ubuntu2
0.6.32~rc+dfsg-1ubuntu2.1
0.6.32~rc+dfsg-1ubuntu2.2
0.6.32~rc+dfsg-1ubuntu2.3
0.6.32~rc+dfsg-1ubuntu2.3+esm1
0.6.32~rc+dfsg-1ubuntu2.3+esm2
0.6.32~rc+dfsg-1ubuntu2.3+esm3
0.6.32~rc+dfsg-1ubuntu2.3+esm4
Ecosystem specific
{
"priority_reason": "This is a low severity issue with a work-around",
"binaries": [
{
"binary_name": "avahi-autoipd",
"binary_version": "0.6.32~rc+dfsg-1ubuntu2.3+esm4"
},
{
"binary_name": "avahi-daemon",
"binary_version": "0.6.32~rc+dfsg-1ubuntu2.3+esm4"
},
{
"binary_name": "avahi-discover",
"binary_version": "0.6.32~rc+dfsg-1ubuntu2.3+esm4"
},
{
"binary_name": "avahi-dnsconfd",
"binary_version": "0.6.32~rc+dfsg-1ubuntu2.3+esm4"
},
{
"binary_name": "avahi-ui-utils",
"binary_version": "0.6.32~rc+dfsg-1ubuntu2.3+esm4"
},
{
"binary_name": "avahi-utils",
"binary_version": "0.6.32~rc+dfsg-1ubuntu2.3+esm4"
},
{
"binary_name": "libavahi-client3",
"binary_version": "0.6.32~rc+dfsg-1ubuntu2.3+esm4"
},
{
"binary_name": "libavahi-common-data",
"binary_version": "0.6.32~rc+dfsg-1ubuntu2.3+esm4"
},
{
"binary_name": "libavahi-common3",
"binary_version": "0.6.32~rc+dfsg-1ubuntu2.3+esm4"
},
{
"binary_name": "libavahi-compat-libdnssd1",
"binary_version": "0.6.32~rc+dfsg-1ubuntu2.3+esm4"
},
{
"binary_name": "libavahi-core7",
"binary_version": "0.6.32~rc+dfsg-1ubuntu2.3+esm4"
},
{
"binary_name": "libavahi-glib1",
"binary_version": "0.6.32~rc+dfsg-1ubuntu2.3+esm4"
},
{
"binary_name": "libavahi-gobject0",
"binary_version": "0.6.32~rc+dfsg-1ubuntu2.3+esm4"
},
{
"binary_name": "libavahi-qt4-1",
"binary_version": "0.6.32~rc+dfsg-1ubuntu2.3+esm4"
},
{
"binary_name": "libavahi-ui-gtk3-0",
"binary_version": "0.6.32~rc+dfsg-1ubuntu2.3+esm4"
},
{
"binary_name": "libavahi-ui0",
"binary_version": "0.6.32~rc+dfsg-1ubuntu2.3+esm4"
},
{
"binary_name": "python-avahi",
"binary_version": "0.6.32~rc+dfsg-1ubuntu2.3+esm4"
}
]
}Ubuntu:Pro:18.04:LTS
avahi
Package
- Name
- avahi
- Purl
- pkg:deb/ubuntu/avahi@0.7-3.1ubuntu1.3+esm3?arch=source&distro=esm-infra/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
0.*
0.6.32-1ubuntu1
0.7-3ubuntu1
0.7-3ubuntu2
0.7-3.1ubuntu1
0.7-3.1ubuntu1.1
0.7-3.1ubuntu1.2
0.7-3.1ubuntu1.3
0.7-3.1ubuntu1.3+esm1
0.7-3.1ubuntu1.3+esm2
0.7-3.1ubuntu1.3+esm3
Ecosystem specific
{
"priority_reason": "This is a low severity issue with a work-around",
"binaries": [
{
"binary_name": "avahi-autoipd",
"binary_version": "0.7-3.1ubuntu1.3+esm3"
},
{
"binary_name": "avahi-daemon",
"binary_version": "0.7-3.1ubuntu1.3+esm3"
},
{
"binary_name": "avahi-discover",
"binary_version": "0.7-3.1ubuntu1.3+esm3"
},
{
"binary_name": "avahi-dnsconfd",
"binary_version": "0.7-3.1ubuntu1.3+esm3"
},
{
"binary_name": "avahi-ui-utils",
"binary_version": "0.7-3.1ubuntu1.3+esm3"
},
{
"binary_name": "avahi-utils",
"binary_version": "0.7-3.1ubuntu1.3+esm3"
},
{
"binary_name": "gir1.2-avahi-0.6",
"binary_version": "0.7-3.1ubuntu1.3+esm3"
},
{
"binary_name": "libavahi-client3",
"binary_version": "0.7-3.1ubuntu1.3+esm3"
},
{
"binary_name": "libavahi-common-data",
"binary_version": "0.7-3.1ubuntu1.3+esm3"
},
{
"binary_name": "libavahi-common3",
"binary_version": "0.7-3.1ubuntu1.3+esm3"
},
{
"binary_name": "libavahi-compat-libdnssd1",
"binary_version": "0.7-3.1ubuntu1.3+esm3"
},
{
"binary_name": "libavahi-core7",
"binary_version": "0.7-3.1ubuntu1.3+esm3"
},
{
"binary_name": "libavahi-glib1",
"binary_version": "0.7-3.1ubuntu1.3+esm3"
},
{
"binary_name": "libavahi-gobject0",
"binary_version": "0.7-3.1ubuntu1.3+esm3"
},
{
"binary_name": "libavahi-ui-gtk3-0",
"binary_version": "0.7-3.1ubuntu1.3+esm3"
},
{
"binary_name": "python-avahi",
"binary_version": "0.7-3.1ubuntu1.3+esm3"
}
]
}Ubuntu:Pro:20.04:LTS
avahi
Package
- Name
- avahi
- Purl
- pkg:deb/ubuntu/avahi@0.7-4ubuntu7.3+esm1?arch=source&distro=esm-infra/focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
0.*
0.7-4ubuntu5
0.7-4ubuntu6
0.7-4ubuntu7
0.7-4ubuntu7.1
0.7-4ubuntu7.2
0.7-4ubuntu7.3
0.7-4ubuntu7.3+esm1
Ecosystem specific
{
"priority_reason": "This is a low severity issue with a work-around",
"binaries": [
{
"binary_name": "avahi-autoipd",
"binary_version": "0.7-4ubuntu7.3+esm1"
},
{
"binary_name": "avahi-daemon",
"binary_version": "0.7-4ubuntu7.3+esm1"
},
{
"binary_name": "avahi-discover",
"binary_version": "0.7-4ubuntu7.3+esm1"
},
{
"binary_name": "avahi-dnsconfd",
"binary_version": "0.7-4ubuntu7.3+esm1"
},
{
"binary_name": "avahi-ui-utils",
"binary_version": "0.7-4ubuntu7.3+esm1"
},
{
"binary_name": "avahi-utils",
"binary_version": "0.7-4ubuntu7.3+esm1"
},
{
"binary_name": "gir1.2-avahi-0.6",
"binary_version": "0.7-4ubuntu7.3+esm1"
},
{
"binary_name": "libavahi-client3",
"binary_version": "0.7-4ubuntu7.3+esm1"
},
{
"binary_name": "libavahi-common-data",
"binary_version": "0.7-4ubuntu7.3+esm1"
},
{
"binary_name": "libavahi-common3",
"binary_version": "0.7-4ubuntu7.3+esm1"
},
{
"binary_name": "libavahi-compat-libdnssd1",
"binary_version": "0.7-4ubuntu7.3+esm1"
},
{
"binary_name": "libavahi-core7",
"binary_version": "0.7-4ubuntu7.3+esm1"
},
{
"binary_name": "libavahi-glib1",
"binary_version": "0.7-4ubuntu7.3+esm1"
},
{
"binary_name": "libavahi-gobject0",
"binary_version": "0.7-4ubuntu7.3+esm1"
},
{
"binary_name": "libavahi-ui-gtk3-0",
"binary_version": "0.7-4ubuntu7.3+esm1"
},
{
"binary_name": "python-avahi",
"binary_version": "0.7-4ubuntu7.3+esm1"
}
]
}