Note:
This project will be discontinued after December 13, 2021. [more]
2015-11-02
Buffer overflow in the IGDstartelt function in igd_desc_parse.c in the MiniUPnP client (aka MiniUPnPc) before 1.9.20150917 allows remote UPNP servers to cause a denial of service (application crash) and possibly execute arbitrary code via an "oversized" XML element name.
Products | Miniupnp |
Type | Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) |
First patch |
https://github.com/miniupnp/miniupnp/commit/79cca974a4c2ab1199786732a67ff6d898051b78 |
Relevant file/s | ./miniupnpc/igd_desc_parse.c (modified, +5, -3) |
Links |
• http://talosintel.com/reports/TALOS-2015-0035/
• https://github.com/miniupnp/miniupnp/blob/master/miniupnpc/Changelog.txt • https://security.gentoo.org/glsa/201801-08 • http://lists.opensuse.org/opensuse-updates/2015-11/msg00122.html • http://www.ubuntu.com/usn/USN-2780-2 |
Navigation
Patch data:
Patched area:
(on by default)
Patched area: