It was discovered that the Mumble client supported websites for public servers
with arbitrary URL schemes. If a user were tricked into visiting a malicious
website from the public server list, a remote attacker could possibly execute
arbitrary code.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 16.04 | noarch | mumble | < 1.2.12-1ubuntu1+esm1 | UNKNOWN |
Ubuntu | 16.04 | noarch | mumble | < 1.2.12-1ubuntu1 | UNKNOWN |
Ubuntu | 16.04 | noarch | mumble-dbg | < 1.2.12-1ubuntu1 | UNKNOWN |
Ubuntu | 16.04 | noarch | mumble-dbgsym | < 1.2.12-1ubuntu1 | UNKNOWN |
Ubuntu | 16.04 | noarch | mumble-server | < 1.2.12-1ubuntu1 | UNKNOWN |
Ubuntu | 16.04 | noarch | mumble-server-dbgsym | < 1.2.12-1ubuntu1 | UNKNOWN |