8 matches found
Gentoo Security Advisory GLSA 201508-03
Gentoo Linux Local Security Checks GLSA 201508-03 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
Fedora 22 : icecast-2.4.2-1.fc22 (2015-13083)
update to 2.4.2 - fix CVE-2015-3026 - use %license on Fedora 22+ Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...
Fedora 21 : icecast-2.4.2-1.fc21 (2015-13077)
update to 2.4.2 - fix CVE-2015-3026 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...
GLSA-201508-03 : Icecast: Denial of Service
The remote host is affected by the vulnerability described in GLSA-201508-03 Icecast: Denial of Service When streamauth handler is defined for URL authentication and a request is sent without login credentials, a Denial of Service condition can occur. Impact : A remote attacker could possibly cau...
Fedora 23 : icecast-2.4.2-1.fc23 (2015-13106)
update to 2.4.2 - fix CVE-2015-3026 - use %license on Fedora 22+ Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...
CVE-2015-3026
CVE-2015-3026 affects Icecast 2.x up to 2.4.2, where defining a stream_auth handler for URL authentication allows a remote attacker to cause a Denial of Service (NULL pointer dereference) by sending a request without login credentials (e.g., via admin/killsource?mount=/test.ogg). The issue is tri...
openSUSE Security Update : icecast (openSUSE-2015-310)
The streaming server icecast was updated to fix a remote denial of service vulnerability. A remote attacker could crash icecast and cause denial of service when URL Auth is configured and used with streamauth without credentials bnc926402 CVE-2015-3026 %NASLMINLEVEL 70300 C Tenable Network...
icecast: denial of service
CVE-2015-3026 denial of service: The bug can only be triggered if "streamauth" is being used. This means, that all installations that use a default configuration are NOT affected.The default configuration only uses source-password. Neither are simple mountpoints affected that use password. A...