Format: 1.8 Date: Tue, 02 Feb 2021 14:45:21 +0000 Source: minidlna Binary: minidlna Architecture: armhf Version: 1.2.1+dfsg-1ubuntu0.20.04.1 Distribution: focal Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Paulo Flabiano Smorigo Description: minidlna - lightweight DLNA/UPnP-AV server targeted at embedded systems Changes: minidlna (1.2.1+dfsg-1ubuntu0.20.04.1) focal-security; urgency=medium . * SECURITY UPDATE: Insufficient input sanitization vulnerability - debian/patches/CVE-2020-12695.patch: upnphttp: Validate SUBSCRIBE callback URL. - debian/patches/CVE-2020-28926.patch: upnphttp: Disallow negative HTTP chunk lengths. - CVE-2020-12695 - CVE-2020-28926 * Other fixes: - debian/patches/14-fix-gcc10-ftbfs.patch: Fix build for GCC10. - debian/patches/15-use-newer-ip_multicast_if-api.patch: Use newer API for IP_MULTICAST_IF which allows one to specify interface by index, not by address. Checksums-Sha1: 05c0431d74d89205b8d292ac20b2df391b322569 331076 minidlna-dbgsym_1.2.1+dfsg-1ubuntu0.20.04.1_armhf.ddeb 4a6fc758b86ed691ec7e85dfe09123e46582cceb 8951 minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_armhf.buildinfo c23cf7fd893125f374d7a819f460122f2a1af881 133400 minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_armhf.deb Checksums-Sha256: d8aba696069cdd68147ad4da8ec67d43ba8cad406bf874017839d00226889765 331076 minidlna-dbgsym_1.2.1+dfsg-1ubuntu0.20.04.1_armhf.ddeb bfd23d981c2e418f1c308bcc8c3d8f3a1a425c77351a7ba307f091b9f5a07401 8951 minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_armhf.buildinfo a48da248fc845cfadf21e0fc5f1ffac87d0cac4a343acaf263eef2fed66b9857 133400 minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_armhf.deb Files: 8f768a8b77f4b9df792203c09382937f 331076 debug optional minidlna-dbgsym_1.2.1+dfsg-1ubuntu0.20.04.1_armhf.ddeb 98d3768e7a4a71dd716b1c99ace795f8 8951 net optional minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_armhf.buildinfo 2461ec8ca906b4d013de0cf71c4cfebc 133400 net optional minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_armhf.deb Original-Maintainer: Alexander GQ Gerasiov