FEDORA-EPEL-2021-e976495093 created by robert 2 weeks ago for Fedora EPEL 8
testing

Coturn 4.5.2

  • Fix null pointer dereference in case of out of memory
  • Add prometheus metrics
  • Delete trailing whitespace in example configuration files
  • Add architecture ppc64le to travis build
  • Fix misleading option in doc (prometheus)
  • Allow RFC6062 TCP relay data to look like TLS
  • Add support for proxy protocol V1
  • Print full date and time in logs
  • Add new options: "new-log-timestamp" and "new-log-timestamp-format"
  • Do not use FIPS and remove hardcode OPENSSL_VERSION_NUMBER with LibreSSL
  • Add ACME redirect url
  • Support of --acme-redirect <URL>
  • Fix acme security, redundancy, consistency
  • Disable binding request logging to avoid DoS attacks (Breaking change!)
    • Add new --log-binding option to enable binding request logging
  • Fix stale-nonce documentation
  • Version number is changed to semver 2.0
  • pkg-config, and various cleanups in configure file
  • Add systemd notification for better systemd integration
  • Fix: Null pointer dereference on tcp_client_input_handler_rfc6062data function
  • Fix: use-after-free vulnerability on write_to_peerchannel function
  • Fix: use-after-free vulnerability on write_client_connection function
  • Little refactoring prometheus
    • Fix c++ support
    • Simplify
      • Remove session id/allocation labels
      • Remove per session metrics
  • Fix CVE-2020-26262

This update has been submitted for testing by robert.

2 weeks ago

This update's test gating status has been changed to 'ignored'.

2 weeks ago

This update's test gating status has been changed to 'waiting'.

2 weeks ago

This update's test gating status has been changed to 'ignored'.

2 weeks ago

robert edited this update.

2 weeks ago

This update has been pushed to testing.

2 weeks ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
2 weeks ago
in testing
2 weeks ago
days to stable
2
modified
2 weeks ago
BZ#1914861 coturn-4.5.2 is available
0
0
BZ#1915045 CVE-2020-26262 coturn: Loopback access control bypass
0
0
BZ#1915048 CVE-2020-26262 coturn: Loopback access control bypass [epel-all]
0
0

Automated Test Results