Package "minidlna"

Links

Download "minidlna"

Other versions of "minidlna" in Xenial

Repository	Area	Version
base	universe	1.1.5+dfsg-2
security	universe	1.1.5+dfsg-2ubuntu0.1

Changelog

Version: 1.1.5+dfsg-2ubuntu0.1	2021-02-03 19:07:14 UTC
minidlna (1.1.5+dfsg-2ubuntu0.1) xenial-security; urgency=medium   * SECURITY UPDATE: Insufficient input sanitization vulnerability     - debian/patches/CVE-2020-12695.patch: upnphttp: Validate SUBSCRIBE       callback URL.     - debian/patches/CVE-2020-28926.patch: upnphttp: Disallow negative HTTP       chunk lengths.     - CVE-2020-12695     - CVE-2020-28926   * Other fixes:     - debian/patches/15-use-newer-ip_multicast_if-api.patch: Use newer     API for IP_MULTICAST_IF which allows one to specify interface by     index, not by address.  -- Paulo Flabiano Smorigo <email address hidden> Mon, 01 Feb 2021 14:22:43 +0000
CVE-2020-12695 The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on CVE-2020-28926 ReadyMedia (aka MiniDLNA) before versions 1.3.0 allows remote code execution. Sending a malicious UPnP HTTP request to the miniDLNA service using HTT

---

Share this page

Bookmarks

skype 4.3.0.37
virtualbox-4.3 4.3.40-110317
steam 1:1.0.0.79
google-chrome-beta 125.0.6422.26

Latest updates

  Packages changelogs
  Bugs & CVEs

proposed

ubuntustudio-installer (noble)
nautilus (noble)
openafs (noble)
nautilus (noble)
xdg-desktop-portal (noble)
tzdata (noble)
smifb2 (noble)
xdg-desktop-portal (noble)
runc-app (jammy)
runc-app (focal)
linux-restricted-signatures (mantic)
linux-restricted-modules (mantic)
tzdata (noble)
linux-signed (mantic)
linux-meta (mantic)
linux (mantic)
libjsoncpp (jammy)
multipath-tools (focal)
distro-info-data (bionic)
distro-info-data (xenial)
vim (noble)
far2l (noble)
vim (noble)
lintian (noble)
pam (noble)
vim (mantic)
vim (mantic)
lintian (mantic)
vim (jammy)

updates

php7.4 (focal)

See all

PPA updates

  PPAs

nginx-nr-agent (bionic)
handbrake (trusty)
code-insiders (stable)
google-chrome-unstable (stable)
firefox (noble)
firefox (mantic)
firefox (jammy)
firefox (focal)
firefox-trunk (noble)
virtualbox-7.0 (jammy)
virtualbox-7.0 (focal)
virtualbox-7.0 (bionic)
chromium (vera)
pgsphere (jammy-pgdg)
linux-restricted-modules (noble)
google-chrome-beta (stable)
code (stable)
firefox (vera)
nautilus (noble)
vivaldi-stable (stable)
linux-signed (noble)
signal-desktop (xenial)
signal-desktop-beta (xenial)
linux-signed-intel (noble)
linux-meta-intel (noble)
linux-generate-intel (noble)
linux-generate (noble)
linux-meta (noble)
kodi-peripheral-joystick (focal)
brave-browser (stable)

See all