342 matches found
CVE-2015-3026
Icecast before 2.4.2, when a streamauth handler is defined for URL authentication, allows remote attackers to cause a denial of service NULL pointer dereference and crash via a request without login credentials, as demonstrated by a request to "admin/killsource?mount=/test.ogg."...
CVE-2015-3026
CVE-2015-3026 affects Icecast 2.x up to 2.4.2, where defining a stream_auth handler for URL authentication allows a remote attacker to cause a Denial of Service (NULL pointer dereference) by sending a request without login credentials (e.g., via admin/killsource?mount=/test.ogg). The issue is tri...
CVE-2015-3026
Icecast before 2.4.2, when a streamauth handler is defined for URL authentication, allows remote attackers to cause a denial of service NULL pointer dereference and crash via a request without login credentials, as demonstrated by a request to "admin/killsource?mount=/test.ogg."...
openSUSE Security Update : icecast (openSUSE-2015-310)
The streaming server icecast was updated to fix a remote denial of service vulnerability. A remote attacker could crash icecast and cause denial of service when URL Auth is configured and used with streamauth without credentials bnc926402 CVE-2015-3026 %NASLMINLEVEL 70300 C Tenable Network...
icecast: denial of service
CVE-2015-3026 denial of service: The bug can only be triggered if "streamauth" is being used. This means, that all installations that use a default configuration are NOT affected.The default configuration only uses source-password. Neither are simple mountpoints affected that use password. A...
Fedora Update for icecast FEDORA-2014-16435
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Icecast: Multiple Vulnerabilities
Background Icecast is an open source alternative to SHOUTcast that supports MP3, OGG Vorbis/Theora and AAC streaming. Description Two vulnerabilities have been discovered in Icecast: Icecast does not properly handle shared file descriptors CVE-2014-9018 Supplementary group privileges are not...
GLSA-201412-38 : Icecast: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201412-38 Icecast: Multiple Vulnerabilities Two vulnerabilities have been discovered in Icecast: Icecast does not properly handle shared file descriptors CVE-2014-9018 Supplementary group privileges are not changed CVE-2014-9091...
[SECURITY] Fedora 21 Update: icecast-2.4.1-1.fc21
Icecast is a streaming media server which currently supports Ogg Vorbis and MP3 audio streams. It can be used to create an Internet radio station or a privately running jukebox and many things in between. It is very versatile in that new formats can be added relatively easily and supports open...
[SECURITY] Fedora 20 Update: icecast-2.4.1-1.fc20
Icecast is a streaming media server which currently supports Ogg Vorbis and MP3 audio streams. It can be used to create an Internet radio station or a privately running jukebox and many things in between. It is very versatile in that new formats can be added relatively easily and supports open...
[SECURITY] Fedora 19 Update: icecast-2.4.1-1.fc19
Icecast is a streaming media server which currently supports Ogg Vorbis and MP3 audio streams. It can be used to create an Internet radio station or a privately running jukebox and many things in between. It is very versatile in that new formats can be added relatively easily and supports open...
Fedora 19 : icecast-2.4.1-1.fc19 (2014-16483)
fix CVE-2014-9091 1168146, 1168147, 1168148, 1168149 fix CVE-2014-9018 1165880, 1165882, 1165883, 1165885 enabled fully hardened build 954320 - update new to release v2.4.1 1101950 - added doc-subpkg Note that Tenable Network Security has extracted the preceding description block directly from th...
Fedora 21 : icecast-2.4.1-1.fc21 (2014-16435)
fix CVE-2014-9091 1168146, 1168147, 1168148, 1168149 fix CVE-2014-9018 1165880, 1165882, 1165883, 1165885 enabled fully hardened build 954320 - update new to release v2.4.1 1101950 - added doc-subpkg Note that Tenable Network Security has extracted the preceding description block directly from th...
Fedora 20 : icecast-2.4.1-1.fc20 (2014-16394)
fix CVE-2014-9091 1168146, 1168147, 1168148, 1168149 fix CVE-2014-9018 1165880, 1165882, 1165883, 1165885 enabled fully hardened build 954320 - update new to release v2.4.1 1101950 - added doc-subpkg Note that Tenable Network Security has extracted the preceding description block directly from th...
Fedora Update for icecast FEDORA-2014-16483
Check the version of icecast SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868599";...
Fedora Update for icecast FEDORA-2014-16394
Check the version of icecast SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868602";...
CVE-2014-9091
Icecast before 2.4.0 does not change the supplementary group privileges when is configured, which allows local users to gain privileges via unspecified vectors...
CVE-2014-9091
Icecast before 2.4.0 does not change the supplementary group privileges when is configured, which allows local users to gain privileges via unspecified vectors...
DEBIAN-CVE-2014-9091
Icecast before 2.4.0 does not change the supplementary group privileges when is configured, which allows local users to gain privileges via unspecified vectors...
CVE-2014-9091
Icecast before 2.4.0 does not change the supplementary group privileges when is configured, which allows local users to gain privileges via unspecified vectors...