stable

coturn-4.5.1.1-3.fc31

FEDORA-2020-305c173af8 created by robert 4 years ago for Fedora 31
  • An exploitable heap overflow vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to information leaks and other misbehavior.
  • An exploitable denial-of-service vulnerability exists in the way CoTURN 4.5.1.1 web server parses POST requests. A specially crafted HTTP POST request can lead to server crash and denial of service.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2020-305c173af8

This update has been submitted for testing by robert.

4 years ago

This update's test gating status has been changed to 'waiting'.

4 years ago

This update's test gating status has been changed to 'ignored'.

4 years ago

This update has been pushed to testing.

4 years ago

This update can be pushed to stable now if the maintainer wishes

4 years ago

This update has been submitted for stable by bodhi.

4 years ago

This update has been pushed to stable.

4 years ago

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
4 years ago
in testing
4 years ago
in stable
4 years ago
BZ#1816159 CVE-2020-6061 coturn: specially crafted HTTP POST request can lead to heap overflow which can result in information leak
0
0
BZ#1816160 CVE-2020-6061 coturn: specially crafted HTTP POST request can lead to heap overflow which can result in information leak [fedora-all]
0
0
BZ#1816163 CVE-2020-6062 coturn: specially crafted HTTP POST request can lead to server crash and denial of service
0
0
BZ#1816164 CVE-2020-6062 coturn: specially crafted HTTP POST request can lead to server crash and denial of service [fedora-all]
0
0

Automated Test Results