Описание
Security update for libupnp
This update to libupnp 1.6.21 fixes the following security issues:
- various string handling issues (bsc#898167)
- CVE-2016-8863: out-of-bounds access (bsc#1006256)
- CVE-2016-6255: fix for file write via POST (bsc#989948)
Список пакетов
openSUSE Leap 42.2
libupnp-1.6.21-4.3.1
libupnp-devel-1.6.21-4.3.1
libupnp6-1.6.21-4.3.1
libupnp6-32bit-1.6.21-4.3.1
Ссылки
- E-Mail link for openSUSE-SU-2017:1485-1
- SUSE Security Ratings
Описание
Portable UPnP SDK (aka libupnp) before 1.6.21 allows remote attackers to write to arbitrary files in the webroot via a POST request without a registered handler.
Затронутые продукты
openSUSE Leap 42.2:libupnp-1.6.21-4.3.1
openSUSE Leap 42.2:libupnp-devel-1.6.21-4.3.1
openSUSE Leap 42.2:libupnp6-1.6.21-4.3.1
openSUSE Leap 42.2:libupnp6-32bit-1.6.21-4.3.1
Ссылки
- CVE-2016-6255
- SUSE Bug 989948
Описание
Heap-based buffer overflow in the create_url_list function in gena/gena_device.c in Portable UPnP SDK (aka libupnp) before 1.6.21 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a valid URI followed by an invalid one in the CALLBACK header of an SUBSCRIBE request.
Затронутые продукты
openSUSE Leap 42.2:libupnp-1.6.21-4.3.1
openSUSE Leap 42.2:libupnp-devel-1.6.21-4.3.1
openSUSE Leap 42.2:libupnp6-1.6.21-4.3.1
openSUSE Leap 42.2:libupnp6-32bit-1.6.21-4.3.1
Ссылки
- CVE-2016-8863
- SUSE Bug 1006256