Format: 1.8 Date: Tue, 02 Feb 2021 14:45:21 +0000 Source: minidlna Binary: minidlna Architecture: arm64 Version: 1.2.1+dfsg-1ubuntu0.20.04.1 Distribution: focal Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Paulo Flabiano Smorigo Description: minidlna - lightweight DLNA/UPnP-AV server targeted at embedded systems Changes: minidlna (1.2.1+dfsg-1ubuntu0.20.04.1) focal-security; urgency=medium . * SECURITY UPDATE: Insufficient input sanitization vulnerability - debian/patches/CVE-2020-12695.patch: upnphttp: Validate SUBSCRIBE callback URL. - debian/patches/CVE-2020-28926.patch: upnphttp: Disallow negative HTTP chunk lengths. - CVE-2020-12695 - CVE-2020-28926 * Other fixes: - debian/patches/14-fix-gcc10-ftbfs.patch: Fix build for GCC10. - debian/patches/15-use-newer-ip_multicast_if-api.patch: Use newer API for IP_MULTICAST_IF which allows one to specify interface by index, not by address. Checksums-Sha1: 1986e6d26ebdfac7ceb47b3ac0a58c206b032804 330732 minidlna-dbgsym_1.2.1+dfsg-1ubuntu0.20.04.1_arm64.ddeb 6c520463662b7b451628c8f777be41062ef580eb 9083 minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_arm64.buildinfo 079038a47718ea3dd124beae2d9fae0821f9413e 133628 minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_arm64.deb Checksums-Sha256: 4036dfe055435fd9c56eb6916ae6d9bfebf130b0a0be64012a720c96d9fec131 330732 minidlna-dbgsym_1.2.1+dfsg-1ubuntu0.20.04.1_arm64.ddeb 5e5a81b4f6e61a6cd06166ba27348422af1877e3a1f02e6aaffacfea24e5704f 9083 minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_arm64.buildinfo 0f35410e1c4b2a5e13183e39584c1b708dc73eb2cfdbc351135e96c9d7ff37c5 133628 minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_arm64.deb Files: 535931afdc34556df89ae50b7a639dbd 330732 debug optional minidlna-dbgsym_1.2.1+dfsg-1ubuntu0.20.04.1_arm64.ddeb 990e981c0e6e1063bcbbf0bf9829f66f 9083 net optional minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_arm64.buildinfo 544320eb57a3209e667f12486752f197 133628 net optional minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_arm64.deb Original-Maintainer: Alexander GQ Gerasiov