-------------------------------------------------------------------------------- Fedora EPEL Update Notification FEDORA-EPEL-2022-4069001f10 2022-02-08 00:41:31.712439 --------------------------------------------------------------------------------
Name : miniupnpc Product : Fedora EPEL 7 Version : 2.0 Release : 3.el7 URL : http://miniupnp.free.fr/ Summary : Library and tool to control NAT in UPnP-enabled routers Description : miniupnpc is an implementation of a UPnP client library, enabling applications to access the services provided by an UPnP "Internet Gateway Device" present on the network. In UPnP terminology, it is a UPnP Control Point. This package includes upnpc, a UPnP client application for configuring port forwarding in UPnP enabled routers. -------------------------------------------------------------------------------- Update Information: - Clean up SPEC file. - Add patch to fix CVE-2017-1000494 (backported from 2.1). - Add patch to fix CVE-2017-8798 (backported from 2.1). - Drop conditions for Python 3 etc, other branches have moved forward. -------------------------------------------------------------------------------- ChangeLog: * Sun Jan 30 2022 Simone Caronni <[email protected]> - 2.0-3 - Add patch to fix CVE-2017-8798 (backported from 2.1). * Sun Jan 30 2022 Simone Caronni <[email protected]> - 2.0-2 - Clean up SPEC file. - Add patch to fix CVE-2017-1000494 (backported from 2.1). - Drop conditions for Python 3 etc, other branches have moved forward. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1450064 - CVE-2017-8798 miniupnpc: Integer signedness error [epel-7] https://bugzilla.redhat.com/show_bug.cgi?id=1450064 [ 2 ] Bug #1532504 - CVE-2017-1000494 miniupnpc: Multiple vulnerabilities can allow a remote attacker to cause a denial of service or potentially execute code [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1532504 -------------------------------------------------------------------------------- This update can be installed with the "yum" update programs. Use su -c 'yum update miniupnpc' at the command line. For more information, refer to "YUM", available at https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7\ /html/System_Administrators_Guide/ch-yum.html All packages are signed with the Fedora EPEL GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ epel-package-announce mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
