[Git][security-tracker-team/security-tracker][master] Add new miniupnpd issues
Salvatore Bonaccorso
carnil at debian.org
Thu May 16 10:52:46 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
46cf9834 by Salvatore Bonaccorso at 2019-05-16T09:52:25Z
Add new miniupnpd issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -49,15 +49,23 @@ CVE-2019-12113
CVE-2019-12112
RESERVED
CVE-2019-12111 (A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 ex ...)
- TODO: check
+ - miniupnpd <unfixed>
+ NOTE: https://github.com/miniupnp/miniupnp/commit/cb8a02af7a5677cf608e86d57ab04241cf34e24f
CVE-2019-12110 (An AddPortMapping Denial Of Service vulnerability in MiniUPnP MiniUPnP ...)
- TODO: check
+ - miniupnpd <unfixed>
+ NOTE: https://github.com/miniupnp/miniupnp/commit/f321c2066b96d18afa5158dfa2d2873a2957ef38
CVE-2019-12109 (A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 ex ...)
- TODO: check
+ - miniupnpd <unfixed>
+ NOTE: https://github.com/miniupnp/miniupnp/commit/13585f15c7f7dc28bbbba1661efb280d530d114c
+ NOTE: https://github.com/miniupnp/miniupnp/commit/86030db849260dd8fb2ed975b9890aef1b62b692
CVE-2019-12108 (A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 ex ...)
- TODO: check
+ - miniupnpd <unfixed>
+ NOTE: https://github.com/miniupnp/miniupnp/commit/13585f15c7f7dc28bbbba1661efb280d530d114c
+ NOTE: https://github.com/miniupnp/miniupnp/commit/86030db849260dd8fb2ed975b9890aef1b62b692
CVE-2019-12107 (The upnp_event_prepare function in upnpevents.c in MiniUPnP MiniUPnPd ...)
- TODO: check
+ - miniupnpd <unfixed>
+ NOTE: https://github.com/miniupnp/miniupnp/commit/bec6ccec63cadc95655721bc0e1dd49dac759d94
+ TODO: check, might affect minidlna
CVE-2019-12106 (The updateDevice function in minissdpd.c in MiniUPnP MiniSSDPd 1.4 and ...)
TODO: check
CVE-2019-12105
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/46cf98341af566c62f1ba8536763419a46104d93
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/46cf98341af566c62f1ba8536763419a46104d93
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190516/f5d49762/attachment.html>
More information about the debian-security-tracker-commits
mailing list