Alerts This Week
Warning Icon 1 1,153
Alerts This Week
Warning Icon 1 1,153

SUSE 15 SP7 Avahi Moderate DoS Issues 2026-0259-1 CVE-2025-68276

suse
Calendar Grey January 23, 2026
Dist Suse Esm H88
An important SUSE security update addresses multiple issues in Avahi with a moderate severity rating.
An update that solves three vulnerabilities can now be installed.

Summary

## This update for avahi fixes the following issues: * CVE-2025-68276: Fixed refuse to create wide-area record browsers when wide- area is off (bsc#1256498) * CVE-2025-68471: Fixed DoS bug by changing assert to return (bsc#1256500) * CVE-2025-68468: Fixed DoS bug by removing incorrect assertion (bsc#1256499) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-259=1 openSUSE-SLE-15.6-2026-259=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-259=1 * Desktop Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP7-2026-259=1

References

* bsc#1256498

* bsc#1256499

* bsc#1256500

Cross-

* CVE-2025-68276

* CVE-2025-68468

* CVE-2025-68471

CVSS scores:

* CVE-2025-68276 ( SUSE ): 6.8

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

* CVE-2025-68276 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

* CVE-2025-68276 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

* CVE-2025-68468 ( SUSE ): 7.1

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

* CVE-2025-68468 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

* CVE-2025-68468 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

* CVE-2025-68471 ( SUSE ): 7.1

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Announcement ID: SUSE-SU-2026:0259-1
Release Date: 2026-01-22T16:11:01Z
Rating: moderate

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here