1
Candidate: CVE-2011-1165
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1165
6
Vino, possibly before 3.2, does not properly document that it opens ports
7
in UPnP routers when the "Configure network to automatically accept
8
connections" setting is enabled, which might make it easier for remote
9
attackers to perform further attacks.
12
jdstrand> no upstream fix
13
mdeslaur> oneiric+ has more explicit text: "Automatically configure UPnP
14
mdeslaur> router to open and forward ports". Marking as not-affected.
21
upstream_vino: needs-triage
22
hardy_vino: ignored (reached end-of-life)
23
lucid_vino: ignored (reached end-of-life)
24
maverick_vino: ignored (reached end-of-life)
25
natty_vino: ignored (reached end-of-life)
26
oneiric_vino: not-affected (3.2.0-0ubuntu1.1)
27
precise_vino: not-affected (3.4.2-0ubuntu1.1)
28
quantal_vino: not-affected (3.5.92-0ubuntu1)
29
raring_vino: not-affected (3.5.92-0ubuntu1)
30
devel_vino: not-affected (3.5.92-0ubuntu1)