Bug 19008

Summary: libupnp new security issue CVE-2016-6255
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: QA Team <qa-bugs>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: normal    
Priority: Normal CC: davidwhodgins, herman.viaene, sysadmin-bugs
Version: 5Keywords: validated_update
Target Milestone: ---   
Hardware: All   
OS: Linux   
URL: http://lwn.net/Vulnerabilities/695558/
Whiteboard: has_procedure MGA5-32-OK advisory
Source RPM: libupnp-1.6.19-4.mga5.src.rpm CVE:
Status comment:

Description David Walser 2016-07-21 18:24:38 CEST 
A CVE has been assigned for a security issue in libupnp:
http://openwall.com/lists/oss-security/2016/07/20/5

A patch to fix it is linked in the message above.

Patched packages uploaded for Mageia 5 and Cauldron.

Advisory:
========================

Updated libupnp packages fix security vulnerability:

libupnp's default behavior allows an unauthenticated user access to a server's
filesystem through POST and GET requests (CVE-2016-6255).

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6255
http://openwall.com/lists/oss-security/2016/07/20/5
========================

Updated packages in core/updates_testing:
========================
libupnp6-1.6.19-4.1.mga5
libthreadutil6-1.6.19-4.1.mga5
libixml2-1.6.19-4.1.mga5
libupnp-devel-1.6.19-4.1.mga5

from libupnp-1.6.19-4.1.mga5.src.rpm
Comment 1 David Walser 2016-07-23 23:48:16 CEST 
Used by amule, openclonk, retroshare, ushare, and vlc-plugin-upnp.  Not sure which ones of those would enable the HTTP server.
Comment 2 Herman Viaene 2016-07-25 17:01:35 CEST 
MGA5-32 on AcerD60 Xfce
No installation issues
Used test as per bug14143 Comment 9, used VLC to play music , works OK.

CC: (none) => herman.viaene

Herman Viaene 2016-07-25 17:01:51 CEST

Whiteboard: (none) => has_procedure MGA5-32-OK

Dave Hodgins 2016-07-26 23:30:24 CEST

Keywords: (none) => validated_update
Whiteboard: has_procedure MGA5-32-OK => has_procedure MGA5-32-OK advisory
CC: (none) => davidwhodgins, sysadmin-bugs

Comment 3 Mageia Robot 2016-07-26 23:59:57 CEST 
An update for this issue has been pushed to the Mageia Updates repository.

http://advisories.mageia.org/MGASA-2016-0266.html

Status: NEW => RESOLVED
Resolution: (none) => FIXED

David Walser 2016-07-27 18:50:29 CEST

URL: (none) => http://lwn.net/Vulnerabilities/695558/