generic-library/libupnp
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
release-1.6.18
libupnp/upnp
History
Marcelo Roberto Jimenez f015a132e8 Security fix for CERT issue VU#922681 
This patch addresses three possible buffer overflows in function
unique_service_name(). The three issues have the folowing CVE
numbers:

CVE-2012-5958 Issue #2: Stack buffer overflow of Tempbuf
CVE-2012-5959 Issue #4: Stack buffer overflow of Event->UDN
CVE-2012-5960 Issue #8: Stack buffer overflow of Event->UDN

Notice that the following issues have already been dealt by previous
work:

CVE-2012-5961 Issue #1: Stack buffer overflow of Evt->UDN
CVE-2012-5962 Issue #3: Stack buffer overflow of Evt->DeviceType
CVE-2012-5963 Issue #5: Stack buffer overflow of Event->UDN
CVE-2012-5964 Issue #6: Stack buffer overflow of Event->DeviceType
CVE-2012-5965 Issue #7: Stack buffer overflow of Event->DeviceType
2012-12-06 15:43:15 -02:00
..
doc Include prebuilt documentation (html,pdf), dropping doc++ dependancy. 2006-07-06 12:37:29 +00:00
inc Add --enable-unspecified_server 2012-03-30 21:57:51 +02:00
m4 Backport of svn rev. 554: 2010-06-26 11:09:49 +00:00
sample Fix problems detected as dead assignment warning by clang scan-build. 2012-04-21 11:38:20 +09:00
src Security fix for CERT issue VU#922681 2012-12-06 15:43:15 -02:00
test Merge of trunk into branch 1.6.x. 2008-02-03 01:36:23 +00:00
LICENSE Removing unnecessary additional directory level. 2006-07-04 02:44:17 +00:00
Makefile.am Add --disable-optssdp option 2012-03-15 14:13:27 +01:00