Описание
ELSA-2021-1789: gssdp and gupnp security update (MODERATE)
gssdp [1.0.5-1]
- gssdp-1.0.5-1
- Update to 1.0.5
- Fix SUBSCRIBE misbehaviour
- Resolves: #1861928
gupnp [1.0.6-1]
- gupnp-1.0.6-1
- Update to 1.0.6
- Fix SUBSCRIBE misbehaviour
- Resolves: #1846589
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
gssdp
1.0.5-1.el8
gssdp-devel
1.0.5-1.el8
gssdp-docs
1.0.5-1.el8
gupnp
1.0.6-1.el8
gupnp-devel
1.0.6-1.el8
Oracle Linux x86_64
gssdp
1.0.5-1.el8
gssdp-devel
1.0.5-1.el8
gssdp-docs
1.0.5-1.el8
gupnp
1.0.6-1.el8
gupnp-devel
1.0.6-1.el8
Связанные CVE
Связанные уязвимости
The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.
The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.
The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.
The Open Connectivity Foundation UPnP specification before 2020-04-17 ...
