avahi (0.8-18) [PTS] [DDPO]

OK: VCS matches the version in the archive

Git: https://salsa.debian.org/utopia-team/avahi.git
JSON
Enter a full Vcs-* header, supported schemes are: Vcs-Bzr, Vcs-Cvs, Vcs-Darcs, Vcs-Git, Vcs-Hg, Vcs-Mtn, Vcs-Svn.
For Vcs-Git append -b branch to select the branch name; append [subdir] if the debian/ directory is not in the repository root.
The next upload will reset the information from the source package headers.
Branch: debian/latest
Path: debian/changelog
Repo size: 557056
Browser: https://salsa.debian.org/utopia-team/avahi
Last scan: 2026-03-07 23:55:04+00
Next scan: 2026-03-15 23:15:00+00
Merge requests: 1
CI pipeline status: success

Debian changelog in Git:

avahi (0.8-18) unstable; urgency=medium

  [ Simon McVittie ]
  * d/copyright: Don't quote the FSF's former postal address here

  [ Michael Biebl ]
  * core: refuse to create wide-area record browsers when wide-area is off.
    Patch cherry-picked from upstream Git
    CVE-2025-68276 (Closes: #1125417)
  * core: fix DoS bug by removing incorrect assertion.
    Patch cherry-picked from upstream Git
    CVE-2025-68468 (Closes: #1125418)
  * core: fix DoS bug by changing assert to return.
    Patch cherry-picked from upstream Git
    CVE-2025-68471 (Closes: #1125419)
  * core: fix uncontrolled recursion bug using a simple loop detection
    algorithm.
    Patch cherry-picked from upstream Git
    CVE-2026-24401 (Closes: #1126342)
  * Randomize transaction IDs in wide area queries.
    Patch cherry-picked from upstream Git.
    CVE-2024-52616 (Closes: #1088111)
  * Bump Standards-Version to 4.7.3

 -- Michael Biebl <biebl@debian.org>  Sun, 01 Feb 2026 16:54:47 +0100

This branch is even with tag debian/0.8-18