CVE-2023-33476

Related Files

Gentoo Linux Security Advisory 202311-12

Posted Nov 25, 2023

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 202311-12 - Multiple vulnerabilities have been discovered in MiniDLNA, the worst of which could lead to remote code execution. Versions greater than or equal to 1.3.3 are affected.

tags | advisory, vulnerability, code execution

systems | linux, gentoo

advisories | CVE-2022-26505, CVE-2023-33476

SHA-256 | cc83bcbe6bdba045adbde73827f2740686afd44ef103d3b118c9f8a6ea84554a

Download | Favorite | View

Ubuntu Security Notice USN-6398-1

Posted Sep 27, 2023

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6398-1 - It was discovered that ReadyMedia was vulnerable to DNS rebinding attacks. A remote attacker could possibly use this issue to trick the local DLNA server to leak information. This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. It was discovered that ReadyMedia incorrectly handled certain HTTP requests using chunked transport encoding. A remote attacker could possibly use this issue to cause buffer overflows, resulting in out-of-bounds reads and writes.

tags | advisory, remote, web, overflow, local

systems | linux, ubuntu

advisories | CVE-2022-26505, CVE-2023-33476

SHA-256 | e6b9c23be1704ff9683c7ec1e7ebad7ae3586cc6f747aba35595f86f21361f68

Download | Favorite | View

Debian Security Advisory 5434-1

Posted Jun 21, 2023

Authored by Debian | Site debian.org

Debian Linux Security Advisory 5434-1 - A heap-based buffer overflow vulnerability was found in the HTTP chunk parsing code of minidlna, a lightweight DLNA/UPnP-AV server, which may result in denial of service or the execution of arbitrary code.

tags | advisory, web, denial of service, overflow, arbitrary

systems | linux, debian

advisories | CVE-2023-33476

SHA-256 | 7f71f9245838fb544dc4679d61458c69044ed1975fd9c395139c5b8893ef09f2

Download | Favorite | View