Publishing details
Changelog
minidlna (1.1.5+dfsg-2ubuntu0.1) xenial-security; urgency=medium
* SECURITY UPDATE: Insufficient input sanitization vulnerability
- debian/patches/CVE-2020-12695.patch: upnphttp: Validate SUBSCRIBE
callback URL.
- debian/patches/CVE-2020-28926.patch: upnphttp: Disallow negative HTTP
chunk lengths.
- CVE-2020-12695
- CVE-2020-28926
* Other fixes:
- debian/patches/15-use-newer-ip_multicast_if-api.patch: Use newer
API for IP_MULTICAST_IF which allows one to specify interface by
index, not by address.
-- Paulo Flabiano Smorigo <email address hidden> Mon, 01 Feb 2021 14:22:43 +0000
Builds
Built packages
-
minidlna
lightweight DLNA/UPnP-AV server targeted at embedded systems
-
minidlna-dbgsym
debug symbols for package minidlna
Package files