CVE-2022-50322

CVE-2022-50322 affects the Linux kernel RTC driver (msc313) where a function prototype mismatch in msc313_rtc_probe() was exposed under Clang with kCFI (CONFIG_CFI_CLANG). The indirect call validation failed when clk_disable_unprepare() did not match devm_add_action_or_reset() callback prototypes...

CVE-2022-50322 rtc: msc313: Fix function prototype mismatch in msc313_rtc_probe()

In the Linux kernel, the following vulnerability has been resolved: rtc: msc313: Fix function prototype mismatch in msc313rtcprobe With clang's kernel control flow integrity kCFI, CONFIGCFICLANG, indirect call targets are validated against the expected function pointer prototype to make sure the...

Linux Distros Unpatched Vulnerability : CVE-2022-22677

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A logic issue in the handling of concurrent media was addressed with improved state handling. This issue is fixed in macOS Monterey 12.4, iOS 15.5 and iPadOS...

Linux Distros Unpatched Vulnerability : CVE-2018-6132

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Uninitialized data in WebRTC in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to obtain potentially sensitive information from process memory vi...

Linux Distros Unpatched Vulnerability : CVE-2020-6831

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A buffer overflow could occur when parsing and validating SCTP chunks in WebRTC. This could have led to memory corruption and a potentially exploitable crash...

Linux Distros Unpatched Vulnerability : CVE-2022-2294

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

MAL-2025-32514 Malicious code in rtc-js-sdk (npm)

The package rtc-js-sdk was found to contain malicious code...

Malicious code in rtc-js-demo (npm)

The package rtc-js-demo was found to contain malicious code...

Malicious code in rtc-js-sdk (npm)

The package rtc-js-sdk was found to contain malicious code...

MAL-2025-32513 Malicious code in rtc-js-demo (npm)

The package rtc-js-demo was found to contain malicious code...

Linux Distros Unpatched Vulnerability : CVE-2024-44953

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix deadlock during RTC update There is a deadlock when runtime suspend wai...

Linux Distros Unpatched Vulnerability : CVE-2020-16044

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet...

Malicious Package

Overview web3-rtc is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...

Malicious code in web3-rtc (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e9dca49a40515fc43ab5bb3d987aa551a6464961dd1aee2b3e4cadae66831a01 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

webkitgtk: the video in a webRTC call may be interrupted if the audio capture gets interrupted

A vulnerability was found in WebKitGTK. This issue occurs due to a logic issue in video self-preview feature in a webRTC call, which can be interrupted if the user answers a phone call or the audio capture is interrupted. This flaw allows a remote attacker to perform a denial of service attack...

libvpx: Double-free in libvpx encoder

A flaw was found in libvpx. A double-free issue can occur in vpxcodecencinitmulti after a failed allocation when initializing the encoder for WebRTC. This can cause memory corruption and an exploitable crash...

libvpx: Double-free in libvpx encoder

A flaw was found in libvpx. A double-free issue can occur in vpxcodecencinitmulti after a failed allocation when initializing the encoder for WebRTC. This can cause memory corruption and an exploitable crash...

Astra Linux – Vulnerability in Thunderbird

A double-free might have occurred in vpxcodecencinitmulti after a failed allocation during the initialization of the encoder for WebRTC. This could have caused memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird versions 139 and Thunderbird versions 128.1...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: rtc: pcf85063: Fixed the potential out-of-bounds write issue during NVMEM read operations in PCF85063. The nvmem interface supports variable buffer sizes, while the regmap interface operates with fixed-size storage. If an nvmem...

libvpx: Double-free in libvpx encoder

A flaw was found in libvpx. A double-free issue can occur in vpxcodecencinitmulti after a failed allocation when initializing the encoder for WebRTC. This can cause memory corruption and an exploitable crash...