Lucene search

MitreCVELIST:CVE-2014-3970

HistoryJun 11, 2014 - 2:00 p.m.

CVE-2014-3970

2014-06-1114:00:00

mitre

www.cve.org

5.3 Medium

AI Score

Confidence

High

0.021 Low

EPSS

Percentile

89.2%

JSON

The pa_rtp_recv function in modules/rtp/rtp.c in the module-rtp-recv module in PulseAudio 5.0 and earlier allows remote attackers to cause a denial of service (assertion failure and abort) via an empty UDP packet.

References

advisories.mageia.org/MGASA-2014-0440.html

lists.freedesktop.org/archives/pulseaudio-discuss/2014-May/020740.html

seclists.org/oss-sec/2014/q2/429

seclists.org/oss-sec/2014/q2/437

secunia.com/advisories/60624

www.mandriva.com/security/advisories?name=MDVSA-2015:134

www.securityfocus.com/bid/67814