SUSE-SU-2026:0259-1

Опубликовано: 22 янв. 2026

Источник: suse-cvrf

Описание

Security update for avahi

This update for avahi fixes the following issues:

CVE-2025-68276: Fixed refuse to create wide-area record browsers when wide-area is off (bsc#1256498)
CVE-2025-68471: Fixed DoS bug by changing assert to return (bsc#1256500)
CVE-2025-68468: Fixed DoS bug by removing incorrect assertion (bsc#1256499)

Список пакетов

Image SLES15-SP6

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-Azure-3P

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-Azure-Standard

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-BYOS

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-BYOS-Azure

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-BYOS-EC2

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-BYOS-GCE

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-GCE

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-Hardened-BYOS

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-Hardened-BYOS-Azure

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-Hardened-BYOS-GCE

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAP

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAP-Azure

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAP-Azure-3P

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAP-BYOS

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAP-BYOS-Azure

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAP-BYOS-GCE

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAP-GCE

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAP-Hardened

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAP-Hardened-Azure

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAP-Hardened-BYOS

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAP-Hardened-BYOS-Azure

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAP-Hardened-BYOS-EC2

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAP-Hardened-BYOS-GCE

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAP-Hardened-EC2

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAP-Hardened-GCE

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAPCAL

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAPCAL-Azure

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-SAPCAL-GCE

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-Azure-3P

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-Azure-Basic

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-Azure-Standard

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-BYOS-Azure

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-BYOS-EC2

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-BYOS-GCE

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-GCE

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-HPC-Azure

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-HPC-BYOS-Azure

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-HPC-BYOS-EC2

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-HPC-BYOS-GCE

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-Hardened-BYOS-Azure

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-Hardened-BYOS-EC2

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-Hardened-BYOS-GCE

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-SAP-Azure

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-SAP-Azure-3P

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-SAP-BYOS-Azure

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-SAP-BYOS-GCE

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-SAP-EC2

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-SAP-GCE

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-SAP-Hardened-Azure

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-SAP-Hardened-BYOS-Azure

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-SAP-Hardened-BYOS-EC2

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-SAP-Hardened-BYOS-GCE

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-SAP-Hardened-GCE

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-SAPCAL-Azure

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP7-SAPCAL-GCE

libavahi-client3-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

SUSE Linux Enterprise Module for Basesystem 15 SP7

avahi-0.8-150600.15.12.1

avahi-compat-howl-devel-0.8-150600.15.12.1

avahi-compat-mDNSResponder-devel-0.8-150600.15.12.1

avahi-lang-0.8-150600.15.12.1

avahi-utils-0.8-150600.15.12.1

libavahi-client3-0.8-150600.15.12.1

libavahi-client3-32bit-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

libavahi-common3-32bit-0.8-150600.15.12.1

libavahi-core7-0.8-150600.15.12.1

libavahi-devel-0.8-150600.15.12.1

libavahi-glib-devel-0.8-150600.15.12.1

libavahi-glib1-0.8-150600.15.12.1

libavahi-gobject0-0.8-150600.15.12.1

libavahi-libevent1-0.8-150600.15.12.1

libavahi-ui-gtk3-0-0.8-150600.15.12.1

libdns_sd-0.8-150600.15.12.1

libhowl0-0.8-150600.15.12.1

typelib-1_0-Avahi-0_6-0.8-150600.15.12.1

SUSE Linux Enterprise Module for Desktop Applications 15 SP7

avahi-autoipd-0.8-150600.15.12.1

avahi-utils-gtk-0.8-150600.15.12.1

libavahi-gobject-devel-0.8-150600.15.12.1

SUSE Linux Enterprise Module for Package Hub 15 SP7

python3-avahi-0.8-150600.15.12.1

openSUSE Leap 15.6

avahi-0.8-150600.15.12.1

avahi-autoipd-0.8-150600.15.12.1

avahi-compat-howl-devel-0.8-150600.15.12.1

avahi-compat-mDNSResponder-devel-0.8-150600.15.12.1

avahi-lang-0.8-150600.15.12.1

avahi-utils-0.8-150600.15.12.1

avahi-utils-gtk-0.8-150600.15.12.1

libavahi-client3-0.8-150600.15.12.1

libavahi-client3-32bit-0.8-150600.15.12.1

libavahi-common3-0.8-150600.15.12.1

libavahi-common3-32bit-0.8-150600.15.12.1

libavahi-core7-0.8-150600.15.12.1

libavahi-devel-0.8-150600.15.12.1

libavahi-glib-devel-0.8-150600.15.12.1

libavahi-glib1-0.8-150600.15.12.1

libavahi-glib1-32bit-0.8-150600.15.12.1

libavahi-gobject-devel-0.8-150600.15.12.1

libavahi-gobject0-0.8-150600.15.12.1

libavahi-libevent1-0.8-150600.15.12.1

libavahi-qt5-1-0.8-150600.15.12.1

libavahi-qt5-devel-0.8-150600.15.12.1

libavahi-ui-gtk3-0-0.8-150600.15.12.1

libdns_sd-0.8-150600.15.12.1

libdns_sd-32bit-0.8-150600.15.12.1

libhowl0-0.8-150600.15.12.1

python3-avahi-0.8-150600.15.12.1

python3-avahi-gtk-0.8-150600.15.12.1

typelib-1_0-Avahi-0_6-0.8-150600.15.12.1

Ссылки

https://www.suse.com/support/update/announcement/2026/suse-su-20260259-1/
Link for SUSE-SU-2026:0259-1
https://lists.suse.com/pipermail/sle-security-updates/2026-January/023889.html
E-Mail link for SUSE-SU-2026:0259-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1256498
SUSE Bug 1256498
https://bugzilla.suse.com/1256499
SUSE Bug 1256499
https://bugzilla.suse.com/1256500
SUSE Bug 1256500
https://www.suse.com/security/cve/CVE-2025-68276/
SUSE CVE CVE-2025-68276 page
https://www.suse.com/security/cve/CVE-2025-68468/
SUSE CVE CVE-2025-68468 page
https://www.suse.com/security/cve/CVE-2025-68471/
SUSE CVE CVE-2025-68471 page

Описание

Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In 0.9-rc2 and earlier, an unprivileged local users can crash avahi-daemon (with wide-area disabled) by creating record browsers with the AVAHI_LOOKUP_USE_WIDE_AREA flag set via D-Bus. This can be done by either calling the RecordBrowserNew method directly or creating hostname/address/service resolvers/browsers that create those browsers internally themselves.

Затронутые продукты

Image SLES15-SP6-Azure-3P:libavahi-client3-0.8-150600.15.12.1

Image SLES15-SP6-Azure-3P:libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-Azure-Standard:libavahi-client3-0.8-150600.15.12.1

Image SLES15-SP6-Azure-Standard:libavahi-common3-0.8-150600.15.12.1

Ссылки

https://www.suse.com/security/cve/CVE-2025-68276.html
CVE-2025-68276
https://bugzilla.suse.com/1256498
SUSE Bug 1256498

Описание

Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In 0.9-rc2 and earlier, avahi-daemon can be crashed by sending unsolicited announcements containing CNAME resource records pointing it to resource records with short TTLs. As soon as they expire avahi-daemon crashes.

Затронутые продукты

Image SLES15-SP6-Azure-3P:libavahi-client3-0.8-150600.15.12.1

Image SLES15-SP6-Azure-3P:libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-Azure-Standard:libavahi-client3-0.8-150600.15.12.1

Image SLES15-SP6-Azure-Standard:libavahi-common3-0.8-150600.15.12.1

Ссылки

https://www.suse.com/security/cve/CVE-2025-68468.html
CVE-2025-68468
https://bugzilla.suse.com/1256499
SUSE Bug 1256499

Описание

Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In 0.9-rc2 and earlier, avahi-daemon can be crashed by sending 2 unsolicited announcements with CNAME resource records 2 seconds apart.

Затронутые продукты

Image SLES15-SP6-Azure-3P:libavahi-client3-0.8-150600.15.12.1

Image SLES15-SP6-Azure-3P:libavahi-common3-0.8-150600.15.12.1

Image SLES15-SP6-Azure-Standard:libavahi-client3-0.8-150600.15.12.1

Image SLES15-SP6-Azure-Standard:libavahi-common3-0.8-150600.15.12.1

Ссылки

https://www.suse.com/security/cve/CVE-2025-68471.html
CVE-2025-68471
https://bugzilla.suse.com/1256500
SUSE Bug 1256500

SUSE-SU-2026:0259-1

Описание

Список пакетов

Image SLES15-SP6

Image SLES15-SP6-Azure-3P

Image SLES15-SP6-Azure-Standard

Image SLES15-SP6-BYOS

Image SLES15-SP6-BYOS-Azure

Image SLES15-SP6-BYOS-EC2

Image SLES15-SP6-BYOS-GCE

Image SLES15-SP6-GCE

Image SLES15-SP6-Hardened-BYOS

Image SLES15-SP6-Hardened-BYOS-Azure

Image SLES15-SP6-Hardened-BYOS-GCE

Image SLES15-SP6-SAP

Image SLES15-SP6-SAP-Azure

Image SLES15-SP6-SAP-Azure-3P

Image SLES15-SP6-SAP-BYOS

Image SLES15-SP6-SAP-BYOS-Azure

Image SLES15-SP6-SAP-BYOS-GCE

Image SLES15-SP6-SAP-GCE

Image SLES15-SP6-SAP-Hardened

Image SLES15-SP6-SAP-Hardened-Azure

Image SLES15-SP6-SAP-Hardened-BYOS

Image SLES15-SP6-SAP-Hardened-BYOS-Azure

Image SLES15-SP6-SAP-Hardened-BYOS-EC2

Image SLES15-SP6-SAP-Hardened-BYOS-GCE

Image SLES15-SP6-SAP-Hardened-EC2

Image SLES15-SP6-SAP-Hardened-GCE

Image SLES15-SP6-SAPCAL

Image SLES15-SP6-SAPCAL-Azure

Image SLES15-SP6-SAPCAL-GCE

Image SLES15-SP7-Azure-3P

Image SLES15-SP7-Azure-Basic

Image SLES15-SP7-Azure-Standard

Image SLES15-SP7-BYOS-Azure

Image SLES15-SP7-BYOS-EC2

Image SLES15-SP7-BYOS-GCE

Image SLES15-SP7-GCE

Image SLES15-SP7-HPC-Azure

Image SLES15-SP7-HPC-BYOS-Azure

Image SLES15-SP7-HPC-BYOS-EC2

Image SLES15-SP7-HPC-BYOS-GCE

Image SLES15-SP7-Hardened-BYOS-Azure

Image SLES15-SP7-Hardened-BYOS-EC2

Image SLES15-SP7-Hardened-BYOS-GCE

Image SLES15-SP7-SAP-Azure

Image SLES15-SP7-SAP-Azure-3P

Image SLES15-SP7-SAP-BYOS-Azure

Image SLES15-SP7-SAP-BYOS-GCE

Image SLES15-SP7-SAP-EC2

Image SLES15-SP7-SAP-GCE

Image SLES15-SP7-SAP-Hardened-Azure

Image SLES15-SP7-SAP-Hardened-BYOS-Azure

Image SLES15-SP7-SAP-Hardened-BYOS-EC2

Image SLES15-SP7-SAP-Hardened-BYOS-GCE

Image SLES15-SP7-SAP-Hardened-GCE

Image SLES15-SP7-SAPCAL-Azure

Image SLES15-SP7-SAPCAL-GCE

SUSE Linux Enterprise Module for Basesystem 15 SP7

SUSE Linux Enterprise Module for Desktop Applications 15 SP7

SUSE Linux Enterprise Module for Package Hub 15 SP7

openSUSE Leap 15.6

Ссылки

Уязвимость: CVE-2025-68276

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2025-68468

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2025-68471

Описание

Затронутые продукты

Ссылки