4 matches found
Mozilla: libusrsctp library out of date
The Mozilla Foundation Security Advisory describes this flaw as: An out of date library libusrsctp contained vulnerabilities that could potentially be exploited...
usrsctp: Buffer overflow in AUTH chunk input validation
A flaw was found in Mozilla Firefox and Thunderbird. When parsing and validating SCTP chunks in WebRTC a memory buffer overflow could occur leading to memory corruption and an exploitable crash. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...
Debian DSA-4645-1 : chromium - security update
Several vulnerabilities have been discovered in the chromium web browser. - CVE-2019-20503 Natalie Silvanovich discovered an out-of-bounds read issue in the usrsctp library. - CVE-2020-6422 David Manouchehri discovered a use-after-free issue in the WebGL implementation. - CVE-2020-6424 Sergei...
AZL-9920 CVE-2019-20503 affecting package usrsctp for versions less than 0.9.5.0-1
usrsctp before 2019-12-20 has out-of-bounds reads in sctploadaddressesfrominit...