VDB
GCVE-110-MAGEIA-2014-435
GCVE-110-MAGEIA-2014-435
Advisory Published
Updated MythTV packages to harden against SSDP reflection attacks
MythTV's UPNP component was suseptable to SSDP reflection attacks
and has been hardened to disallow SSDP device discovery from non-local
addresses as mitigation.
Additionally, a popular schedules retrieval service, Schedules Direct,
will deprecate the old URL used by MythTV to retrieve metadata on 1st
November 2015. This build of MythTV also updates the URL for this this
service for continued operation going forward.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | mythtv | 0 (affected), 0.27.4-20141022.1.mga3 (unaffected), 0 (affected), 0.27.4-20141022.1.mga3.tainted (unaffected) | — |
| Mageia | mythtv | 0 (affected), 0.27.4-20141022.1.mga4 (unaffected), 0 (affected), 0.27.4-20141022.1.mga4.tainted (unaffected) | — |
| Mageia | mythtv-mythweb | 0 (affected), 0.27.4-1.mga3 (unaffected) | — |
| Mageia | mythtv-mythweb | 0 (affected), 0.27.4-1.mga4 (unaffected) | — |
References
Browse GCVE Records
73,118 records in the GCVE database · Updated July 16, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.