Updated miniupnpc packages has been released for Debian 7 LTS
Package : miniupnpc
Version : 1.5-2+deb7u2
CVE ID : CVE-2017-8798
Debian Bug : #862273
It was discovered that there was a integer signedness error in the miniupnpc
UPnP client that could allow remote attackers to cause a denial of service
attack.
For Debian 7 "Wheezy", this issue has been fixed in miniupnpc version
1.5-2+deb7u2.
We recommend that you upgrade your miniupnpc packages.