Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports

Toggle filters

1 – 7 of 7 results

CVE-2013-2600

Medium priority
Ignored

MiniUPnPd has information disclosure use of snprintf()

1 affected packages

miniupnpd

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
miniupnpd
Show less packages

CVE-2019-12111

Medium priority

Some fixes available 1 of 4

A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in copyIPv6IfDifferent in pcpserver.c.

1 affected packages

miniupnpd

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
miniupnpd Not affected Not affected Not affected Needs evaluation Fixed
Show less packages

CVE-2019-12110

Medium priority

Some fixes available 1 of 4

An AddPortMapping Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in upnpredirect.c.

1 affected packages

miniupnpd

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
miniupnpd Not affected Not affected Not affected Needs evaluation Fixed
Show less packages

CVE-2019-12109

Medium priority

Some fixes available 1 of 4

A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for rem_port.

1 affected packages

miniupnpd

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
miniupnpd Not affected Not affected Not affected Needs evaluation Fixed
Show less packages

CVE-2019-12108

Medium priority

Some fixes available 1 of 4

A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for int_port.

1 affected packages

miniupnpd

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
miniupnpd Not affected Not affected Not affected Needs evaluation Fixed
Show less packages

CVE-2019-12107

Medium priority

Some fixes available 1 of 4

The upnp_event_prepare function in upnpevents.c in MiniUPnP MiniUPnPd through 2.1 allows a remote attacker to leak information from the heap due to improper validation of an snprintf return value.

1 affected packages

miniupnpd

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
miniupnpd Not affected Not affected Not affected Needs evaluation Fixed
Show less packages

CVE-2017-1000494

Medium priority

Some fixes available 7 of 10

Uninitialized stack variable vulnerability in NameValueParserEndElt (upnpreplyparse.c) in miniupnpd < 2.0 allows an attacker to cause Denial of Service (Segmentation fault and Memory Corruption) or possibly have unspecified other impact

2 affected packages

miniupnpc, miniupnpd

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
miniupnpc Fixed Fixed
miniupnpd Not affected Fixed
Show less packages