[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 2197-1] miniupnpc security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : miniupnpc
Version        : 1.9.20140610-2+deb8u2
CVE ID         : CVE-2017-8798


It was discovered that there was a integer signedness error in the miniupnpc UPnP client that could allow remote attackers to cause a denial of service attack.


For Debian 8 "Jessie", this problem has been fixed in version 1.9.20140610-2+deb8u2.

We recommend that you upgrade your miniupnpc packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----

iQKTBAEBCgB9FiEEYgH7/9u94Hgi6ruWlvysDTh7WEcFAl6q7rxfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDYy
MDFGQkZGREJCREUwNzgyMkVBQkI5Njk2RkNBQzBEMzg3QjU4NDcACgkQlvysDTh7
WEevdA//UgTeAyMZ9imSZPu57xJBCNHSr9fxmjsWwDe8S5zHakKK/YmmCi9vZJd5
fAXcMTWA54hdf7psUm335cMrxNV0eq/ZKtKBf5nmVXmPmfc0+RnmeDTxFDCZI8vv
YTcoIxn9wqNJGVVk68n5WOJ4Kv9XGrOJo5uNb6Jku/Dvm4aZaHl2sykr7qCvBa3j
YUhmfARQRIURbg4x/BKHSwoWPKVp85ghmh6EyJ+bPbs6jE6Z8opOEJcuyEyEkHXM
rtmFCdhlbS1XJ++N3mTcaI9aI79wbDUvGHpwd1lOEJmqISJ0Htcr6XJULLBjXibN
NkEzkEFHguUZ9I1HHhNoFTkQ/AO1kDPuWmkqmBjOC2NPCuaaSr8ChUCXxK/eBgCR
bNSF2fA2LUs1vK3HcheBl8qh3NwyOWyXRPootsFWLPOlDQ4xiDVXPW0GaZtEi9zV
wMIpL9XehjQEePk0ySNxSOqPbO03hKYilw5o0gFSFsl8vTp2DdKAqBF3hhvuomA0
3HH7mBS2joPk6DBElzRGzBADzF6YIRV15akMu0kMbDH3sk1zBLYjWWkk8gItr2VV
PNTfcFYkMbmlRNZGIhjF1YC0kEO3JlBIrjb6CSELMfCf8G9PhHTg9nis4rF3Xsus
eb/WbLsST/9jcGD6aKgdRRktDNbeMeN+ashDw/M5I7Bj3JFqbdo=
=qiUu
-----END PGP SIGNATURE-----


Reply to: