CVE-2019-12107

Опубликовано: 15 мая 2019

Источник: ubuntu

Приоритет: medium

CVSS2: 5

CVSS3: 7.5

Описание

The upnp_event_prepare function in upnpevents.c in MiniUPnP MiniUPnPd through 2.1 allows a remote attacker to leak information from the heap due to improper validation of an snprintf return value.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
cosmic	ignored	end of life
devel	not-affected	2.1-6ubuntu2
disco	ignored	end of life
eoan	not-affected	2.1-6ubuntu2
esm-apps/bionic	needs-triage
esm-apps/focal	not-affected	2.1-6ubuntu2
esm-apps/jammy	not-affected	2.1-6ubuntu2
esm-apps/noble	not-affected	2.1-6ubuntu2
esm-apps/xenial	released	1.8.20140523-4.1+deb9u2build0.16.04.1

Показывать по

Ссылки на источники

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2019-12107

CVSS3: 7.5

nvd

больше 6 лет назад

The upnp_event_prepare function in upnpevents.c in MiniUPnP MiniUPnPd through 2.1 allows a remote attacker to leak information from the heap due to improper validation of an snprintf return value.

CVE-2019-12107

CVSS3: 7.5

debian

больше 6 лет назад

The upnp_event_prepare function in upnpevents.c in MiniUPnP MiniUPnPd ...

GHSA-wh92-hmx9-3mf2

github

больше 3 лет назад

The upnp_event_prepare function in upnpevents.c in MiniUPnP MiniUPnPd through 2.1 allows a remote attacker to leak information from the heap due to improper validation of an snprintf return value.

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2019-12107

Описание

Пакет miniupnpd

Ссылки на источники

Связанные уязвимости