-
minidlna (1.1.5+dfsg-2ubuntu0.1) xenial-security; urgency=medium
* SECURITY UPDATE: Insufficient input sanitization vulnerability
- debian/patches/CVE-2020-12695.patch: upnphttp: Validate SUBSCRIBE
callback URL.
- debian/patches/CVE-2020-28926.patch: upnphttp: Disallow negative HTTP
chunk lengths.
- CVE-2020-12695
- CVE-2020-28926
* Other fixes:
- debian/patches/15-use-newer-ip_multicast_if-api.patch: Use newer
API for IP_MULTICAST_IF which allows one to specify interface by
index, not by address.
-- Paulo Flabiano Smorigo <email address hidden> Mon, 01 Feb 2021 14:22:43 +0000
-
minidlna (1.1.5+dfsg-2) unstable; urgency=high
* postinst: Fix user setup. (Closes: #810343.)
* minidlnad.1: Clarify -S option behavior. (Closes: #805583)
-- Alexander GQ Gerasiov <email address hidden> Mon, 11 Jan 2016 13:58:27 +0300
-
minidlna (1.1.5+dfsg-1) unstable; urgency=medium
* New upstream release. (Closes: #790927.)
* debian/patches refreshed,
08_fix_multicast_from_other_subnet.patch and
09-check-embedded-art.patch removed: fixed upstream.
* debian/control: Remove initscripts dependency (Closes: #804979).
* Refactor maintainer's scrips: remove conffile parsing and dpkg-statoverride usage.
* minidlnad.1: Update pidfile location. (Closes: #805582.)
-- Alexander GQ Gerasiov <email address hidden> Sun, 03 Jan 2016 16:45:53 +0300
-
minidlna (1.1.4+dfsg-4build1) wily; urgency=medium
* No-change rebuild against ffmpeg 2.7
-- Rico Tzschichholz <email address hidden> Tue, 01 Sep 2015 18:22:45 +0200
