NewStart CGSL CORE 5.04 / MAIN 5.04 : libsrtp Multiple Vulnerabilities (NS-SA-2021-0032)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has libsrtp packages installed that are affected by multiple vulnerabilities: - The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted fields in SRTP...

Scientific Linux Security Update : libsrtp on SL7.x x86_64 (20201001)

Security Fixes : - libsrtp: improper handling of CSRC count and extension header length in RTP header CVE-2015-6360 - libsrtp: buffer overflow in application of crypto profiles CVE-2013-2139 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if...

libsrtp security update

CentOS Errata and Security Advisory CESA-2020:3873 An update for libsrtp is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

Moderate: Red Hat Security Advisory: libsrtp security and bug fix update

An update for libsrtp is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Huawei EulerOS: Security Advisory for libsrtp (EulerOS-SA-2020-1787)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 3.0.6.0 : libsrtp (EulerOS-SA-2020-1787)

According to the version of the libsrtp package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - Buffer overflow in srtp.c in libsrtp in srtp 1.4.5 and earlier allows remote attackers to cause a denial of service crash via vector...

Huawei EulerOS: Security Advisory for libsrtp (EulerOS-SA-2019-2472)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP2 : libsrtp (EulerOS-SA-2019-2472)

According to the versions of the libsrtp package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Buffer overflow in srtp.c in libsrtp in srtp 1.4.5 and earlier allows remote attackers to cause a denial of service crash via vectors related to...

Updated srtp package fixes security vulnerability

Fernando Russ from Groundworks Technologies reported a buffer overflow flaw in srtp, Cisco's reference implementation of the Secure Real-time Transport Protocol SRTP, in how the cryptopolicysetfromprofileforrtp function applies cryptographic profiles to an srtppolicy. A remote attacker could...

CVE-2013-2139

CVE-2013-2139 affects libsrtp: buffer overflow in srtp.c (crypto_policy_set_from_profile_for_rtp and srtp_protect) in srtp 1.4.5 and earlier, enabling remote denial of service. Connected advisories (e.g., RHSA-2020:3873; ALAS-2020-1530; ELSA-2020-3873) confirm multiple libsrtp mitigations and pat...

[SECURITY] [DSA 2840-1] srtp security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2840-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso January 10, 2014 http://www.debian.org/security/faq -...

[SECURITY] [DSA 2840-1] srtp security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2840-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso January 10, 2014 http://www.debian.org/security/faq -...

Fedora 20 : libsrtp-1.4.4-9.20101004cvs.fc20 (2013-24153)

Fix CVE-2013-2139 - buffer overflow in application of crypto profiles Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

Fedora 19 : libsrtp-1.4.4-9.20101004cvs.fc19 (2013-24114)

Fix CVE-2013-2139 - buffer overflow in application of crypto profiles Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...