Description: "Portable UPnP SDK (aka libupnp) 1.12.1 and earlier allows remote attackers to cause a denial of service (crash) via a crafted SSDP message due to a NULL pointer dereference in the functions FindServiceControlURLPath and FindServiceEventURLPath in genlib/service_table/service_table.c."
@maintainer(s), please apply the provided patch: https://github.com/pupnp/pupnp/commit/c805c1de1141cb22f74c0d94dd5664bda37398e0
ping
Ping. Please let us know if you're unable to patch this right now.
I guess we will stable..
hppa/sparc stable
x86 stable
arm done
arm64 done
Looking good on ppc64. # cat /mnt/mychroot/root/tatt/libupnp-727170.report USE tests started on Di 8. Sep 15:12:12 CEST 2020 FEATURES=' test' USE='' succeeded for =net-libs/libupnp-1.14.0 USE='-blocking-tcp doc ipv6 -reuseaddr -samples -static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='blocking-tcp -doc -ipv6 reuseaddr -samples -static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='blocking-tcp doc ipv6 reuseaddr -samples -static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='-blocking-tcp -doc -ipv6 -reuseaddr samples -static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='-blocking-tcp -doc ipv6 reuseaddr samples -static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='-blocking-tcp -doc ipv6 -reuseaddr -samples static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='blocking-tcp -doc ipv6 -reuseaddr -samples static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='-blocking-tcp -doc ipv6 reuseaddr -samples static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='blocking-tcp doc ipv6 reuseaddr -samples static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='-blocking-tcp -doc -ipv6 -reuseaddr samples static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='blocking-tcp doc -ipv6 -reuseaddr samples static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='-blocking-tcp doc ipv6 reuseaddr samples static-libs' succeeded for =net-libs/libupnp-1.14.0 revdep tests started on Di 8. Sep 15:29:41 CEST 2020 FEATURES=' test' USE='upnp' succeeded for media-video/vlc FEATURES=' test' USE='upnp' succeeded for net-p2p/amule
Looking good on ppc. # cat libupnp-727170.report USE tests started on Mi 9. Sep 17:34:39 CEST 2020 FEATURES=' test' USE='' succeeded for =net-libs/libupnp-1.14.0 USE='-blocking-tcp -doc -ipv6 -reuseaddr -samples -static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='blocking-tcp -doc ipv6 -reuseaddr samples -static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='blocking-tcp doc ipv6 -reuseaddr samples -static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='blocking-tcp -doc ipv6 reuseaddr samples -static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='blocking-tcp doc ipv6 reuseaddr samples -static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='blocking-tcp doc -ipv6 -reuseaddr -samples static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='blocking-tcp doc ipv6 -reuseaddr -samples static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='blocking-tcp doc -ipv6 reuseaddr -samples static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='blocking-tcp doc ipv6 -reuseaddr samples static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='-blocking-tcp -doc ipv6 reuseaddr samples static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='blocking-tcp -doc ipv6 reuseaddr samples static-libs' succeeded for =net-libs/libupnp-1.14.0 USE='blocking-tcp doc ipv6 reuseaddr samples static-libs' succeeded for =net-libs/libupnp-1.14.0 revdep tests started on Mi 9. Sep 18:52:20 CEST 2020 FEATURES=' test' USE='upnp' succeeded for media-video/vlc FEATURES=' test' USE='upnp' succeeded for net-p2p/amule
ppc/ppc64 stable thanks to ernsteiswuerfel!
amd64 stable. Maintainer(s), please cleanup. Security, please vote.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=33ed7ab218de232aae5e597c3fd24b37e190dd21 commit 33ed7ab218de232aae5e597c3fd24b37e190dd21 Author: John Helmert III <ajak@gentoo.org> AuthorDate: 2021-03-12 16:26:07 +0000 Commit: John Helmert III <ajak@gentoo.org> CommitDate: 2021-03-12 16:26:52 +0000 net-libs/libupnp: security cleanup (drop <1.14.0) Bug: https://bugs.gentoo.org/727170 Package-Manager: Portage-3.0.12, Repoman-3.0.2 Signed-off-by: John Helmert III <ajak@gentoo.org> net-libs/libupnp/Manifest | 4 --- net-libs/libupnp/libupnp-1.12.1.ebuild | 47 ---------------------------------- net-libs/libupnp/libupnp-1.6.21.ebuild | 47 ---------------------------------- net-libs/libupnp/libupnp-1.6.25.ebuild | 47 ---------------------------------- net-libs/libupnp/libupnp-1.8.7.ebuild | 47 ---------------------------------- 5 files changed, 192 deletions(-)
FYI: I took ownership and bumped to newest 1.14.12
