SCIENTIFIC-LINUX-ERRATA Archives

June 2021

SCIENTIFIC-LINUX-ERRATA@LISTSERV.FNAL.GOV

Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
From:
Farhan Ahmed <[log in to unmask]>
Reply To:
Date:
Tue, 15 Jun 2021 12:12:58 -0000
Content-Type:
text/plain
Parts/Attachments:
text/plain (30 lines)
Synopsis:          Important: gupnp security update
Advisory ID:       SLSA-2021:2417-1
Issue Date:        2021-06-15
CVE Numbers:       CVE-2021-33516
--

Security Fix(es):

* gupnp: allows DNS rebinding which could result in tricking browser into
triggering actions against local UPnP services (CVE-2021-33516)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE


---
SL7
 x86_64
  gupnp-1.0.2-6.el7_9.i686.rpm
  gupnp-1.0.2-6.el7_9.x86_64.rpm
  gupnp-debuginfo-1.0.2-6.el7_9.i686.rpm
  gupnp-debuginfo-1.0.2-6.el7_9.x86_64.rpm
  gupnp-devel-1.0.2-6.el7_9.i686.rpm
  gupnp-devel-1.0.2-6.el7_9.x86_64.rpm
 noarch
  gupnp-docs-1.0.2-6.el7_9.noarch.rpm
--

- Scientific Linux Development Team

ATOM RSS1 RSS2