Candidate: CVE-2013-2600
PublicDate: 2019-11-01 12:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2600
 http://seclists.org/bugtraq/2013/Jul/84
Description:
 MiniUPnPd has information disclosure use of snprintf()
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=716936
Priority: medium
Discovered-by: Craig Young
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N [7.5 HIGH]

Patches_miniupnpd:
 upstream: https://github.com/miniupnp/miniupnp/commit/18887cb1e49295e69c308d8bb1f2526798a77429
upstream_miniupnpd: released (1.8.20130426)
lucid_miniupnpd: DNE
precise_miniupnpd: DNE
quantal_miniupnpd: ignored (reached end-of-life)
raring_miniupnpd: ignored (reached end-of-life)
saucy_miniupnpd: not-affected (1.8.20130730-1)
trusty_miniupnpd: not-affected (1.8.20130730-2)
trusty/esm_miniupnpd: DNE (trusty was not-affected [1.8.20130730-2])
devel_miniupnpd: not-affected (1.8.20130730-2)