Search CVE reports


Toggle filters

1 – 7 of 7 results


CVE-2013-2600

Medium priority
Ignored

MiniUPnPd has information disclosure use of snprintf()

1 affected package

miniupnpd

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
miniupnpd
Show less packages

CVE-2019-12111

Medium priority

Some fixes available 1 of 4

A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in copyIPv6IfDifferent in pcpserver.c.

1 affected package

miniupnpd

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
miniupnpd Not affected Not affected Not affected Needs evaluation Fixed
Show less packages

CVE-2019-12110

Medium priority

Some fixes available 1 of 4

An AddPortMapping Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in upnpredirect.c.

1 affected package

miniupnpd

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
miniupnpd Not affected Not affected Not affected Needs evaluation Fixed
Show less packages

CVE-2019-12109

Medium priority

Some fixes available 1 of 4

A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for rem_port.

1 affected package

miniupnpd

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
miniupnpd Not affected Not affected Not affected Needs evaluation Fixed
Show less packages

CVE-2019-12108

Medium priority

Some fixes available 1 of 4

A Denial Of Service vulnerability in MiniUPnP MiniUPnPd through 2.1 exists due to a NULL pointer dereference in GetOutboundPinholeTimeout in upnpsoap.c for int_port.

1 affected package

miniupnpd

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
miniupnpd Not affected Not affected Not affected Needs evaluation Fixed
Show less packages

CVE-2019-12107

Medium priority

Some fixes available 1 of 4

The upnp_event_prepare function in upnpevents.c in MiniUPnP MiniUPnPd through 2.1 allows a remote attacker to leak information from the heap due to improper validation of an snprintf return value.

1 affected package

miniupnpd

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
miniupnpd Not affected Not affected Not affected Needs evaluation Fixed
Show less packages

CVE-2017-1000494

Medium priority

Some fixes available 7 of 10

Uninitialized stack variable vulnerability in NameValueParserEndElt (upnpreplyparse.c) in miniupnpd < 2.0 allows an attacker to cause Denial of Service (Segmentation fault and Memory Corruption) or possibly have unspecified other impact

2 affected packages

miniupnpc, miniupnpd

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
miniupnpc Fixed Fixed
miniupnpd Not affected Fixed
Show less packages