libavahi-core.so is vulnerable to denial of service. The library provides responses to unicast queries originating from outside of the local network, which may allow a remote attacker to perform DNS amplification attacks, or retrieve confidential information such as device type/model of the operating system.
bugzilla.redhat.com/show_bug.cgi?id=1426712
github.com/lathiat/avahi/issues/203
github.com/lathiat/avahi/issues/203#issuecomment-449536790
lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0@%3Cissues.bookkeeper.apache.org%3E
usn.ubuntu.com/3876-1/
usn.ubuntu.com/3876-2/
www.secfu.net/advisories