AVG-1321 log

Package minidlna
Status Fixed
Severity High
Type arbitrary code execution
Affected 1.2.1-5
Fixed 1.3.0-1
Current 1.3.3-1 [extra]
Ticket None
Created Sat Dec 5 19:24:23 2020
Issue Severity Remote Type Description
CVE-2020-28926 High Yes Arbitrary code execution
ReadyMedia (aka MiniDLNA) before versions 1.3.0 allows remote code execution. Sending a malicious UPnP HTTP request to the miniDLNA service using HTTP...
Date Advisory Package Type
09 Dec 2020 ASA-202012-15 minidlna arbitrary code execution
References
https://www.rootshellsecurity.net/remote-heap-corruption-bug-discovery-minidlna/