Re: libupnp buffer overflows

To: Touko Korpela <touko.korpela@iki.fi>
Cc: debian-security-tracker@lists.debian.org
Subject: Re: libupnp buffer overflows
From: Florian Weimer <fw@deneb.enyo.de>
Date: Fri, 18 May 2012 20:43:52 +0200
Message-id: <[🔎] 87aa15fhxz.fsf@mid.deneb.enyo.de>
In-reply-to: <[🔎] 20120518103649.GA23535@lisko> (Touko Korpela's message of "Fri, 18 May 2012 13:36:50 +0300")
References: <[🔎] 20120518103649.GA23535@lisko>

* Touko Korpela:

> Upstream changelog for libupnp (/usr/share/doc/libupnp6/changelog.gz) lists
> many fixes for buffer overflows in version 1.6.16. Should this be added to
> tracker and check if CVE number is allocated?

It seems that the list of issues is fairly long.  Have you got a list
of source code commits?

Reply to:

Follow-Ups:
- Re: libupnp buffer overflows
  - From: Touko Korpela <touko.korpela@iki.fi>

References:
- libupnp buffer overflows
  - From: Touko Korpela <touko.korpela@iki.fi>

Prev by Date: libupnp buffer overflows
Next by Date: Re: libupnp buffer overflows
Previous by thread: libupnp buffer overflows
Next by thread: Re: libupnp buffer overflows
Index(es):
- Date
- Thread