Red Hat Bugzilla – Bug 1388771
CVE-2016-8863 libupnp: Heap buffer overflow in the create_url_list function
Last modified: 2017-01-24 14:41:22 EST
A heap buffer overflow vulnerability was found in libupnp. This vulnerability might allow for a wide range of impacts, from denial of service to remote code execution.
Created libupnp tracking bugs for this issue:
Affects: fedora-all [bug 1388773]
Affects: epel-7 [bug 1388774]
libupnp 1.6.21 is out, which fixes this issue among others: http://pupnp.sourceforge.net/ChangeLog