Comment # 2 on bug 1233420 from Cliff Zhao

(In reply to SMASH SMASH from comment #0)
> The sequential increment of DNS transaction IDs makes Avahi vulnerable to
> DNS spoofing, allowing attackers to inject malicious DNS records. This can
> compromise the integrity of DNS responses, redirecting users to potentially
> harmful domains. This vulnerability poses a greater risk as it directly
> undermines the integrity of DNS resolution, affecting all systems using
> Avahi for wide-area DNS queries unless mitigations are applied.
> 
> References:
> http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-52616
> https://bugzilla.redhat.com/show_bug.cgi?id=2326429

It returns "CVE ID Not Found" in the above link, maybe this CVE been closed? so
I could not get detailed information, usually there should have a debug info,
or some log, or crash dump...
May I kindly ask our esteemed security team to look into the cause? Thank you
very much!