AVG-7

Package libusbmuxd
Status Fixed
Severity Medium
Type access restriction bypass
Affected 1.0.10-1
Fixed 1.0.10-2
Current 1.0.10+29+g9db5747-1 [extra]
Ticket None
Created Sun Sep 18 15:55:00 2016
Issue Severity Remote Type Description
CVE-2016-5104 Medium Yes Access restriction bypass
The socket_create function in common/socket.c in libimobiledevice and libusbmuxd allows remote attackers on the local network to bypass intended access...
Date Advisory Package Description
05 Jun 2017 ASA-201706-5 libusbmuxd access restriction bypass
References
https://git.archlinux.org/svntogit/packages.git/tree/trunk/CVE-2016-5104.patch?h=packages/libusbmuxd&id=c83d2655d67eb78375b5c3173020b79c9751bb1d
https://github.com/libimobiledevice/libusbmuxd/commit/4397b3376dc4e4cb1c991d0aed61ce6482614196
Notes
Fixed with upstream patch in references.