-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Package : minissdpd Version : 1.2.20130907-3+deb8u2 CVE ID : CVE-2019-12106 Debian Bug : #929297
It was discovered that there was a use after free vulnerability in minissdpd, a network device discovery daemon. A remote attacker could abuse this to crash the process. For Debian 8 "Jessie", this issue has been fixed in minissdpd version 1.2.20130907-3+deb8u2. We recommend that you upgrade your minissdpd packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAlzrCpwACgkQHpU+J9Qx HliZ4A/9H8XKuQ7aADtuy+o9Qx/Qi2Nqz6UdzEe8MD5tFirBF4TSsjkt98Mv2D+Z utbmKrMpLyaEvq6oid8Vljl0QI4iIVQYk1U7WL2Npyklqt3KjSou2x+iP9drCw/Q Stu/V3s0aMeTh5RW+pHyHcVEpxwr4isoWdKLQqRTTBDzcGCdk/7EWamLTVH3Ci05 xUXXWMk0kYHOClLAhgAlVuGV+60NvM9X6Ul7WGMcbIp8jf48UOXnqxo6U8bjULvs 2SfiPFVAlBboGHLmFmJooKg29EQh4a6xLiGvpAcJyNYVHQOWRwTOzjhUP4uF4vbe F3kFlqF+Z4dQ1K+TKjhSRID6RgfgINjPXzlv0ajw5S5g3HTYWj4h/KGtO9FsYO2I KcoGqtObEOS/Q9r7OMCEvoe1gmjw/d+8glgea0PJnvFLFxTw1xkUlEEKhA8qOBNH bnipkFmQBEDoZMNVfsAiff4j3CUQwXQPtuvxvgqjU8bztyQclED4nxsJnDClPLc3 YtumQnqa+ir/rfCd6Xc0aoCC/rvuoc0XaQN13+zd370/Q5S0Dn5+weNxQFEX4KpC tGw4M1diGYUyAZDDjhjkwt6DIc6hvzC4lZF1DFizpZyZU4ET3AmSPsMzyEXBExNs 3JFmlkviH3dudzR4XeZFfX+6/PVFdGh4rKM+BBGeUa+aXOJ32Iw= =ieW3 -----END PGP SIGNATURE-----