Bugzilla – Bug 1179447
VUL-0: CVE-2020-28926: minidlna: before versions 1.3.0 allows remote code execution
Last modified: 2020-12-10 20:15:18 UTC
CVE-2020-28926 ReadyMedia (aka MiniDLNA) before versions 1.3.0 allows remote code execution. Sending a malicious UPnP HTTP request to the miniDLNA service using HTTP chunked encoding can lead to a signedness bug resulting in a buffer overflow in calls to memcpy/memmove. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-28926 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28926 https://sourceforge.net/projects/minidlna/ https://www.rootshellsecurity.net/remote-heap-corruption-bug-discovery-minidlna/
affects Leap 15.1 and 15.2
okay, let's update to 1.3.0 fixing these two: - Disallow negative HTTP chunk lengths. [CVE-2020-28926] - Validate SUBSCRIBE callback URL. [CVE-2020-12695] factory created request id 852318 15.1 created request id 852317 15.2 created request id 852316
closing
This is an autogenerated message for OBS integration: This bug (1179447) was mentioned in https://build.opensuse.org/request/show/852316 15.2 / minidlna https://build.opensuse.org/request/show/852317 15.1 / minidlna
openSUSE-SU-2020:2160-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 1179447 CVE References: CVE-2020-12695,CVE-2020-28926 JIRA References: Sources used: openSUSE Leap 15.2 (src): minidlna-1.3.0-lp152.4.3.1
openSUSE-SU-2020:2194-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 1179447 CVE References: CVE-2020-12695,CVE-2020-28926 JIRA References: Sources used: openSUSE Leap 15.1 (src): minidlna-1.3.0-lp151.3.3.1
openSUSE-SU-2020:2204-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 1179447 CVE References: CVE-2020-12695,CVE-2020-28926 JIRA References: Sources used: openSUSE Backports SLE-15-SP2 (src): minidlna-1.3.0-bp152.4.3.1
openSUSE-SU-2020:2226-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 1179447 CVE References: CVE-2020-12695,CVE-2020-28926 JIRA References: Sources used: openSUSE Backports SLE-15-SP1 (src): minidlna-1.3.0-bp151.2.3.1