Advisories ยป MGASA-2022-0391

Updated minidlna packages fix security vulnerability

Publication date: 28 Oct 2022
Modification date: 28 Oct 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-26505

Description

A DNS rebinding issue in ReadyMedia (formerly MiniDLNA) before 1.3.1
allows a remote web server to exfiltrate media files. (CVE-2022-26505)
                

References

SRPMS

8/core