MiracleLinux 4 : thunderbird-68.8.0-1.AXS4 (AXSA:2020-057:04)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-057:04 advisory. Mozilla: Use-after-free during worker shutdown CVE-2020-12387 Mozilla: Memory safety bugs fixed in Firefox 76 and Firefox ESR 68.8 CVE-2020-12395...

EUVD-2019-11047

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2019-20503

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usrsctp before 2019-12-20 has out-of-bounds reads in sctploadaddressesfrominit. CVE-2019-20503 Note that Nessus relies on the presence of the package as reporte...

CentOS 6 : chromium-browser (RHSA-2020:1270)

The remote CentOS Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:1270 advisory. - usrsctp before 2019-12-20 has out-of-bounds reads in sctploadaddressesfrominit. CVE-2019-20503 - Use after free in WebGL in Google Chrome prior to...

CBL Mariner 2.0 Security Update: usrsctp (CVE-2019-20503)

The version of usrsctp installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2019-20503 advisory. - usrsctp before 2019-12-20 has out-of-bounds reads in sctploadaddressesfrominit. CVE-2019-20503 Note that...

RHEL 5 : usrsctp (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - usrsctp: Buffer overflow in AUTH chunk input validation CVE-2020-6831 - usrsctp before 2019-12-20 has...

CVE-2019-20503 affecting package usrsctp for versions less than 0.9.5.0-1

CVE-2019-20503 affecting package usrsctp for versions less than 0.9.5.0-1. A patched version of the package is available...

Oracle Linux 8 : firefox (ELSA-2020-0820)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-0820 advisory. 68.6.0-1.0.1.el81 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 - Add firefox-oracle-default-prefs.js and remove the corresponding Red...

SUSE CVE-2019-20503

usrsctp before 2019-12-20 has out-of-bounds reads in sctploadaddressesfrominit...

Mozilla: libusrsctp library out of date

The Mozilla Foundation Security Advisory describes this flaw as: An out of date library libusrsctp contained vulnerabilities that could potentially be exploited...

CVE-2019-20503 affecting package usrsctp for versions less than 0.9.5.0-1

CVE-2019-20503 affecting package usrsctp for versions less than 0.9.5.0-1. A patched version of the package is available...

Denial Of Service (DoS)

chromium is vulnerable to denial of service. An out-of-bounds read in sctploadaddressesfrominit in usrsctp allows an attacker to crash the application...

CentOS 8 : firefox (CESA-2020:0820)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2020:0820 advisory. - usrsctp: Out of bounds reads in sctploadaddressesfrominit CVE-2019-20503 - Mozilla: Use-after-free when removing data about origins CVE-2020-6805 -...

CentOS 8 : thunderbird (CESA-2020:2046)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2020:2046 advisory. - Mozilla: Use-after-free during worker shutdown CVE-2020-12387 - Mozilla: Arbitrary local file access with 'Copy as cURL' CVE-2020-12392 - Mozilla:...

usrsctp:fuzzer_listen: Heap-buffer-overflow in sctp_process_init

Project: https://github.com/weinrank/usrsctp.git https://github.com/sctplab/usrsctp.git Detailed Report: https://oss-fuzz.com/testcase?key=5077370870169600 Project: usrsctp Fuzzing Engine: afl Fuzz Target: fuzzerlisten Job Type: aflasanusrsctp Platform Id: linux Crash Type: Heap-buffer-overflow...

Denial Of Service (DoS)

usrsctp is vulnerable to denial of service. An out-of-bounds read in sctploadaddressesfrominit allows an attacker to crash the application...

Exploiting Android Messengers with WebRTC: Part 2

Posted by Natalie Silvanovich, Project Zero This is a three-part series on exploiting messenger applications using vulnerabilities in WebRTC. This series highlights what can go wrong when applications don't apply WebRTC patches and when the communication and notification of security issues breaks...

usrsctp:fuzzer_connect: Crash with empty stacktrace

Detailed Report: https://oss-fuzz.com/testcase?key=6219321542705152 Project: usrsctp Fuzzing Engine: libFuzzer Fuzz Target: fuzzerconnect Job Type: libfuzzerubsanusrsctp Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x7f06700b6bf0 Crash State: NULL Sanitizer: undefined UBSAN...

WebRTC usrsctp Incorrect Call Vulnerability

WebRTC: usrsctp is called with pointer as network address When usrsctp is used with a custom transport, an address must be provided to usrsctpconninput be used as the source and destination address of the incoming packet. WebRTC uses the address of the SctpTransport instance for this value...

usrsctp:fuzzer_connect: Heap-buffer-overflow in sctp_handle_packet_dropped

Project: https://github.com/weinrank/usrsctp.git Detailed Report: https://oss-fuzz.com/testcase?key=5387560242380800 Project: usrsctp Fuzzing Engine: afl Fuzz Target: fuzzerconnect Job Type: aflasanusrsctp Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x61100000e070...