Format: 1.8 Date: Tue, 02 Feb 2021 14:45:21 +0000 Source: minidlna Binary: minidlna Architecture: riscv64 Version: 1.2.1+dfsg-1ubuntu0.20.04.1 Distribution: focal Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Paulo Flabiano Smorigo Description: minidlna - lightweight DLNA/UPnP-AV server targeted at embedded systems Changes: minidlna (1.2.1+dfsg-1ubuntu0.20.04.1) focal-security; urgency=medium . * SECURITY UPDATE: Insufficient input sanitization vulnerability - debian/patches/CVE-2020-12695.patch: upnphttp: Validate SUBSCRIBE callback URL. - debian/patches/CVE-2020-28926.patch: upnphttp: Disallow negative HTTP chunk lengths. - CVE-2020-12695 - CVE-2020-28926 * Other fixes: - debian/patches/14-fix-gcc10-ftbfs.patch: Fix build for GCC10. - debian/patches/15-use-newer-ip_multicast_if-api.patch: Use newer API for IP_MULTICAST_IF which allows one to specify interface by index, not by address. Checksums-Sha1: c3412f4395bfa710e2d31e49d0005db06fbb054e 326976 minidlna-dbgsym_1.2.1+dfsg-1ubuntu0.20.04.1_riscv64.ddeb 9015caad070123bda3e7be65ec6d15e37648f9ea 8843 minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_riscv64.buildinfo 073a2e1a4e6e833b6f8c08d195ee5804368d4256 133496 minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_riscv64.deb Checksums-Sha256: 66dbd2882fd38603cbbe8d65f4beb94be04bf2c9264dc033ace4a8a44e353a0f 326976 minidlna-dbgsym_1.2.1+dfsg-1ubuntu0.20.04.1_riscv64.ddeb 0edfca100439764e42ceecdca4b694b373891248f981ae922346db01657180b4 8843 minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_riscv64.buildinfo 1185d34f31094315e71d2c6c7b9f0bb38e4a2d71a304e39296ccb5968b9bcc51 133496 minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_riscv64.deb Files: fd3e9d760ed6ec2b0f40297c7dac3410 326976 debug optional minidlna-dbgsym_1.2.1+dfsg-1ubuntu0.20.04.1_riscv64.ddeb 44b6d1330fc7f99ecfc2297779f64d13 8843 net optional minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_riscv64.buildinfo 344a2e8df482487461fc024f87d99127 133496 net optional minidlna_1.2.1+dfsg-1ubuntu0.20.04.1_riscv64.deb Original-Maintainer: Alexander GQ Gerasiov