Package "minidlna"

Name:	minidlna
Description:	lightweight DLNA/UPnP-AV server targeted at embedded systems
Latest version:	1.3.0+dfsg-2.1ubuntu0.1
Release:	jammy (22.04)
Level:	security
Repository:	universe
Homepage:	https://sourceforge.net/projects/minidlna/

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "minidlna"

32-bit deb package

64-bit deb package

APT INSTALL

Other versions of "minidlna" in Jammy

Repository	Area	Version
base	universe	1.3.0+dfsg-2.1
updates	universe	1.3.0+dfsg-2.1ubuntu0.1

Changelog

Version: 1.3.0+dfsg-2.1ubuntu0.1 2023-09-27 11:09:44 UTC

minidlna (1.3.0+dfsg-2.1ubuntu0.1) jammy-security; urgency=medium * SECURITY UPDATE: DNS rebinding attack - debian/patches/CVE-2022-26505.patch: validate HTTP requests to protect against DNS rebinding. - CVE-2022-26505 * SECURITY UPDATE: buffer overflow - debian/patches/CVE-2023-33476.patch: fix chunk length parsing. - CVE-2023-33476 -- Allen Huang <email address hidden> Mon, 25 Sep 2023 16:33:06 +0100

CVE-2022-26505	A DNS rebinding issue in ReadyMedia (formerly MiniDLNA) before 1.3.1 allows a remote web server to exfiltrate media files.
CVE-2023-33476	ReadyMedia (MiniDLNA) versions from 1.1.15 up to 1.3.2 is vulnerable to Buffer Overflow. The vulnerability is caused by incorrect validation logic wh

About - Send Feedback to @ubuntu_updates

Package "minidlna"

Links

Download "minidlna"

Other versions of "minidlna" in Jammy

Changelog

Share this page

Bookmarks

Latest updates

updates

proposed

security

PPA updates