Launchpad CVE tracker

CVE 2020-12695

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.

Related bugs and status

CVE-2020-12695 (Candidate) is related to these bugs:

Bug #1893563: netplan: can't login to ap mode with psk

		In	Importance	Status
1893563	netplan: can't login to ap mode with psk	network-manager (Ubuntu)	Medium	Fix Released
1893563	netplan: can't login to ap mode with psk	NetworkManager	Unknown	Fix Released
1893563	netplan: can't login to ap mode with psk	wpa (Ubuntu)	Medium	Fix Released

Bug #1912609: mac80211_hwsim: hostapd fails to start with S1G band

Summary				In	Importance	Status
	1912609	mac80211_hwsim: hostapd fails to start with S1G band		wpa (Ubuntu)	High	Fix Released
	1912609	mac80211_hwsim: hostapd fails to start with S1G band		wpa (Ubuntu Hirsute)	High	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2020-12695

References