Download Latest Version libupnp-2.0.2.tar.bz2 (770.6 kB)
Email in envelope

Get an email when there's a new version of Portable UPnP SDK

Home / release-2.0.2
Name Modified Size InfoDownloads / Week
Parent folder
libupnp-2.0.2.tar.bz2 2026-06-17 770.6 kB
libupnp-2.0.2.tar.bz2.sha256 2026-06-17 88 Bytes
README.md 2026-06-17 1.2 kB
release-2.0.2 source code.tar.gz 2026-06-17 883.5 kB
release-2.0.2 source code.zip 2026-06-17 1.1 MB
Totals: 5 Items   2.7 MB 11

Security release — all users are encouraged to upgrade.

This release fixes three security vulnerabilities:

  • GHSA-gcj7-j9f7-q84cTransfer-Encoding: chunked bodies bypassed the g_maxContentLength limit. Because content_length is never set for chunked transfers, the existing size checks were skipped while the decoded entity accumulated past the configured maximum. Fixed by also checking entity.length in http_RecvMessage().

  • GHSA-q54q-vx78-v9rq — NULL dereference in ixmlNode_compare(). Non-namespaced attributes have nodeValue, namespaceURI, prefix, and localName as NULL, but the function passed them directly to strcmp(). Comparing two distinct attribute objects with the same name (as removeAttributeNode does) triggered a crash. Fixed by using a NULL-safe wrapper.

  • GHSA-g6c2-x4r9-352g — Integer truncation in raw_to_int(). The function used strtol() (returns long, 64-bit on LP64) and cast the result to int (32-bit), silently truncating Content-Length values above INT_MAX. A value like 4294967301 (2³²+5) was stored as 5, bypassing size limits. Fixed by switching to strtoll() with an explicit INT_MAX bound check.

Source: README.md, updated 2026-06-17