minissdpd 1.2.20130907-3.2 source package in Ubuntu
Changelog
minissdpd (1.2.20130907-3.2) unstable; urgency=high * Non-maintainer upload. * Fix CVE-2016-3178 and CVE-2016-3179. (Closes: #816759) The minissdpd daemon contains a improper validation of array index vulnerability (CWE-129) when processing requests sent to the Unix socket at /var/run/minissdpd.sock the Unix socket can be accessed by an unprivileged user to send invalid request causes an out-of-bounds memory access that crashes the minissdpd daemon. -- James Cowgill <email address hidden> Mon, 24 Oct 2016 08:54:59 +0100
Upload details
- Uploaded by:
- Thomas Goirand
- Uploaded to:
- Sid
- Original maintainer:
- Thomas Goirand
- Architectures:
- any
- Section:
- net
- Urgency:
- Very Urgent
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
minissdpd_1.2.20130907-3.2.dsc | 1.9 KiB | 38985689119f7463b9f0715efc14e2a04752be7c34ecf0af0974f7b172cbc619 |
minissdpd_1.2.20130907.orig.tar.gz | 19.8 KiB | 18bc5b9336947d63724c85402dbb8bb134eab2a2ba8ecae4446232f01683b468 |
minissdpd_1.2.20130907-3.2.debian.tar.xz | 6.5 KiB | 95a6d6c9265d0b67acd5dc97d4512195a846ec93da58de2ad66f0bb429bf3ab9 |
Available diffs
No changes file available.
Binary packages built by this source
- minissdpd: No summary available for minissdpd in ubuntu zesty.
No description available for minissdpd in ubuntu zesty.
- minissdpd-dbgsym: No summary available for minissdpd-dbgsym in ubuntu artful.
No description available for minissdpd-dbgsym in ubuntu artful.