A heap buffer overflow vulnerability was found in libupnp. This vulnerability might allow for a wide range of impacts, from denial of service to remote code execution.
Created libupnp tracking bugs for this issue:
Affects: fedora-all [bug 1388773]
Affects: epel-7 [bug 1388774]
libupnp 1.6.21 is out, which fixes this issue among others: http://pupnp.sourceforge.net/ChangeLog