CVE-2020-12695 & libupnp13

To: debian-security-tracker@lists.debian.org
Subject: CVE-2020-12695 & libupnp13
From: Lyndon Brown <jnqnfe@gmail.com>
Date: Sun, 21 Feb 2021 04:08:15 +0000
Message-id: <[🔎] e7c42ae4061a848110f0a50b76fc6cebd23ead9d.camel@gmail.com>

CVE-2020-12695 does not track libupnp13 (pupnp).

I noticed that the upstream v1.14 changelog entry includes work towards
addressing this CVE, whilst the version shipped in Debian testing/sid
is older (v1.8.4) and the CVE tracking page does not cover it.

(please CC, I'm not subscribed)

Reply to:

Follow-Ups:
- Re: CVE-2020-12695 & libupnp13
  - From: Salvatore Bonaccorso <carnil@debian.org>

Prev by Date: External check
Next by Date: External check
Previous by thread: External check
Next by thread: Re: CVE-2020-12695 & libupnp13
Index(es):
- Date
- Thread