SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2021-2153

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2021-2153

Security update for gupnp

Type: security

Severity: important

Issued: 2021-06-24

Description:

This update for gupnp fixes the following issues:

- CVE-2021-33516: Fixed a DNS rebinding, which could trick the browser into triggering actions against local UPnP services (bsc#1186590).

References

CVE: CVE-2021-33516
Bugzilla: 1186590 VUL-0: CVE-2021-33516: gupnp: allows DNS rebinding which could result in tricking browser into triggering actions against local UPnP services

Packages

gupnp-1.2.2-3.3.1