2 matches found
CVE-2015-6360
CVE-2015-6360 affects libsrtp/libSRTP, with several advisories noting that the encryption-processing feature allows remote DoS via crafted SRTP packets. The root cause in the reports is improper handling of CSRC count and extension header length in RTP headers, leading to vulnerable RTP processin...
CVE-2013-2139
CVE-2013-2139 affects libsrtp: buffer overflow in srtp.c (crypto_policy_set_from_profile_for_rtp and srtp_protect) in srtp 1.4.5 and earlier, enabling remote denial of service. Connected advisories (e.g., RHSA-2020:3873; ALAS-2020-1530; ELSA-2020-3873) confirm multiple libsrtp mitigations and pat...