-
minissdpd (1.2.20130907-4.1) unstable; urgency=medium
* Non-maintainer upload.
* Also add Wants=network-online.target in the .service file,
network-online.target is not part of the default dependency chain, this
should really (Closes: #861231)
-- Laurent Bigonville <email address hidden> Mon, 08 May 2017 16:12:09 +0200
-
minissdpd (1.2.20130907-4) unstable; urgency=medium
* Add After=network-online.target in the .service file (Closes: #861231).
* Add lsb-base as depends.
-- Thomas Goirand <email address hidden> Wed, 26 Apr 2017 17:07:25 +0200
-
minissdpd (1.2.20130907-3.2) unstable; urgency=high
* Non-maintainer upload.
* Fix CVE-2016-3178 and CVE-2016-3179. (Closes: #816759)
The minissdpd daemon contains a improper validation of array index
vulnerability (CWE-129) when processing requests sent to the Unix
socket at /var/run/minissdpd.sock the Unix socket can be accessed
by an unprivileged user to send invalid request causes an
out-of-bounds memory access that crashes the minissdpd daemon.
-- James Cowgill <email address hidden> Mon, 24 Oct 2016 08:54:59 +0100