projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c1c9c18) | patch
package/minidlna: fix CallStranger a.k.a. CVE-2020-12675
authorFabrice Fontaine <fontaine.fabrice@gmail.com>
Sun, 6 Sep 2020 10:09:38 +0000 (12:09 +0200)
committerThomas Petazzoni <thomas.petazzoni@bootlin.com>
Sun, 6 Sep 2020 12:38:13 +0000 (14:38 +0200)
commit9ab9118831a86353c39bdc111cb3171f28efa717
tree77a3d0542d4efe1cb485b709937a716defdc1b42tree
parentc1c9c1877c00de6b53795bad19e0b627ff66a327commit | diff
package/minidlna: fix CallStranger a.k.a. CVE-2020-12675

No MINIDLNA_IGNORE_CVES entry is added as no CVE has been assigned to
minidlna. Indeed, CallStranger vulnerability affect(ed) most of the UPnP
stacks (e.g. gupnp, libupnp)

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
package/minidlna/0002-upnphttp.c-fix-CallStranger-a.k.a.-CVE-2020-12695.patch [new file with mode: 0644] blob