Security update for libupnp SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2017:1485-1 Final 1 1 2017-06-04T19:14:22Z current 2017-06-04T19:14:22Z 2017-06-04T19:14:22Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for libupnp This update to libupnp 1.6.21 fixes the following security issues: - various string handling issues (bsc#898167) - CVE-2016-8863: out-of-bounds access (bsc#1006256) - CVE-2016-6255: fix for file write via POST (bsc#989948) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-updates/2017-06/msg00006.html E-Mail link for openSUSE-SU-2017:1485-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.2 libupnp-1.6.21-4.3.1 libupnp-devel-1.6.21-4.3.1 libupnp6-1.6.21-4.3.1 libupnp6-32bit-1.6.21-4.3.1 libupnp-1.6.21-4.3.1 as a component of openSUSE Leap 42.2 libupnp-devel-1.6.21-4.3.1 as a component of openSUSE Leap 42.2 libupnp6-1.6.21-4.3.1 as a component of openSUSE Leap 42.2 libupnp6-32bit-1.6.21-4.3.1 as a component of openSUSE Leap 42.2 Portable UPnP SDK (aka libupnp) before 1.6.21 allows remote attackers to write to arbitrary files in the webroot via a POST request without a registered handler. CVE-2016-6255 openSUSE Leap 42.2:libupnp-1.6.21-4.3.1 openSUSE Leap 42.2:libupnp-devel-1.6.21-4.3.1 openSUSE Leap 42.2:libupnp6-1.6.21-4.3.1 openSUSE Leap 42.2:libupnp6-32bit-1.6.21-4.3.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2017-06/msg00006.html https://www.suse.com/security/cve/CVE-2016-6255.html CVE-2016-6255 https://bugzilla.suse.com/989948 SUSE Bug 989948 Heap-based buffer overflow in the create_url_list function in gena/gena_device.c in Portable UPnP SDK (aka libupnp) before 1.6.21 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a valid URI followed by an invalid one in the CALLBACK header of an SUBSCRIBE request. CVE-2016-8863 openSUSE Leap 42.2:libupnp-1.6.21-4.3.1 openSUSE Leap 42.2:libupnp-devel-1.6.21-4.3.1 openSUSE Leap 42.2:libupnp6-1.6.21-4.3.1 openSUSE Leap 42.2:libupnp6-32bit-1.6.21-4.3.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2017-06/msg00006.html https://www.suse.com/security/cve/CVE-2016-8863.html CVE-2016-8863 https://bugzilla.suse.com/1006256 SUSE Bug 1006256