[ALSA-2021:1789] Moderate: gssdp and gupnp security update
Type:
security
Severity:
moderate
Release date:
2021-11-12
Description:
GUPnP is an object-oriented open source framework for creating UPnP devices and control points, written in C using GObject and libsoup. The GUPnP API is intended to be easy to use, efficient and flexible. GSSDP implements resource discovery and announcement over SSDP and is part of gUPnP. The following packages have been upgraded to a later upstream version: gssdp (1.0.5), gupnp (1.0.6). (BZ#1846589, BZ#1861928) Security Fix(es): * hostapd: UPnP SUBSCRIBE misbehavior in WPS AP (CVE-2020-12695) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 gssdp-devel-1.0.5-1.el8.aarch64.rpm 5885c265cd260aab689b5474e87363650cb7c139f865c5d9440edf86fc331370
aarch64 gssdp-1.0.5-1.el8.aarch64.rpm eb86e45b02d0c99c0f494b87aed8283888149ed21da87d2a144a211e610ad9fc
i686 gssdp-devel-1.0.5-1.el8.i686.rpm 65de2457c3ed8c0b0b882b5e4bfaa351b02fce4c6b6753033051bd84b5e12cc9
i686 gupnp-devel-1.0.6-1.el8.i686.rpm b68798acfe0d63fecf7e00e5cc8fe8af58d7a4e33bdb1154766050caf5c0ae3b
i686 gssdp-1.0.5-1.el8.i686.rpm e7283cbea865a2ba48f7d81454b67bb467834b2384aec994f056e704eb6b269c
noarch gssdp-docs-1.0.5-1.el8.noarch.rpm 6c844d13ebf582672013a54345f097d1b093ecfd603f783357e0d1f6d7ba64ea
ppc64le gssdp-1.0.5-1.el8.ppc64le.rpm b8bad58a0ca36327453091f07439d0bed37725c56fec76feccd4b61c223d1452
ppc64le gssdp-devel-1.0.5-1.el8.ppc64le.rpm e60236329a6ebd9021803e84da36639a67798e8a3d73362b173956f186a1d279
x86_64 gssdp-1.0.5-1.el8.x86_64.rpm 0e81920a87a838100c55c31d4fd15d034c98abee4dfe3de221d82058b95d3d54
x86_64 gupnp-devel-1.0.6-1.el8.x86_64.rpm 8424734b592bd74be800098a9d0309f5cd43a2d3c2c606916e85d85e754023bd
x86_64 gssdp-devel-1.0.5-1.el8.x86_64.rpm 87acb0ee6c60f51022d71656d7dd587b1e2e3cfb233c31ea9357392f303fad8a
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.