Debian 10229 Published by

Updated miniupnpc packages has been released for Debian 7 LTS



Package : miniupnpc
Version : 1.5-2+deb7u2
CVE ID : CVE-2017-8798
Debian Bug : #862273

It was discovered that there was a integer signedness error in the miniupnpc
UPnP client that could allow remote attackers to cause a denial of service
attack.

For Debian 7 "Wheezy", this issue has been fixed in miniupnpc version
1.5-2+deb7u2.

We recommend that you upgrade your miniupnpc packages.