[ubuntu/xenial-security] coturn 4.5.0.3-1ubuntu0.3 (Accepted)

Eduardo Barretto Mon, 06 Jul 2020 10:26:20 -0700

coturn (4.5.0.3-1ubuntu0.3) xenial-security; urgency=medium

  * SECURITY UPDATE: Heap-buffer overflow in HTTP POST request
    - debian/patches/CVE-2020-6061.patch: Fix overflow
    - CVE-2020-6061
  * SECURITY UPDATE: DoS when parsing certain HTTP POST request
    - debian/patches/CVE-2020-6062.patch: Fix parsing of POST requests
    - CVE-2020-6062
  * SECURITY UPDATE: Information leak between different client connections
    - debian/patches/CVE-2020-4067.patch: initialize with zero any new or
      reused stun buffers
    - CVE-2020-4067


Date: 2020-07-06 14:55:04.130620+00:00
Changed-By: Eduardo Barretto <[email protected]>
https://launchpad.net/ubuntu/+source/coturn/4.5.0.3-1ubuntu0.3

Sorry, changesfile not available.

-- 
Xenial-changes mailing list
[email protected]
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/xenial-changes

[ubuntu/xenial-security] coturn 4.5.0.3-1ubuntu0.3 (Accepted)

Reply via email to