[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1805-1] minissdpd security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : minissdpd
Version        : 1.2.20130907-3+deb8u2
CVE ID         : CVE-2019-12106
Debian Bug     : #929297

It was discovered that there was a use after free vulnerability in
minissdpd, a network device discovery daemon. A remote attacker could
abuse this to crash the process.

For Debian 8 "Jessie", this issue has been fixed in minissdpd version
1.2.20130907-3+deb8u2.

We recommend that you upgrade your minissdpd packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
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=ieW3
-----END PGP SIGNATURE-----


Reply to: