Upstream information
Description
Buffer overflow in the IGDstartelt function in igd_desc_parse.c in the MiniUPnP client (aka MiniUPnPc) before 1.9.20150917 allows remote UPNP servers to cause a denial of service (application crash) and possibly execute arbitrary code via an "oversized" XML element name.SUSE information
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having moderate severity.
SUSE Bugzilla entry: 950759 [RESOLVED / FIXED]SUSE Security Advisories:
- openSUSE-SU-2015:2070-1
SUSE Timeline for this CVE
CVE page created: Fri Oct 16 03:50:23 2015CVE page last modified: Mon Sep 9 15:21:37 2024