[ubuntu/xenial-security] coturn 4.5.0.3-1ubuntu0.3 (Accepted)
Eduardo Barretto
eduardo.barretto at canonical.com
Mon Jul 6 17:25:21 UTC 2020
coturn (4.5.0.3-1ubuntu0.3) xenial-security; urgency=medium
* SECURITY UPDATE: Heap-buffer overflow in HTTP POST request
- debian/patches/CVE-2020-6061.patch: Fix overflow
- CVE-2020-6061
* SECURITY UPDATE: DoS when parsing certain HTTP POST request
- debian/patches/CVE-2020-6062.patch: Fix parsing of POST requests
- CVE-2020-6062
* SECURITY UPDATE: Information leak between different client connections
- debian/patches/CVE-2020-4067.patch: initialize with zero any new or
reused stun buffers
- CVE-2020-4067
Date: 2020-07-06 14:55:04.130620+00:00
Changed-By: Eduardo Barretto <eduardo.barretto at canonical.com>
https://launchpad.net/ubuntu/+source/coturn/4.5.0.3-1ubuntu0.3
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list