[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2020-606{1,2}/coturn
Salvatore Bonaccorso
carnil at debian.org
Sat Apr 18 20:09:48 BST 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6680df0c by Salvatore Bonaccorso at 2020-04-18T21:09:12+02:00
Add fixed version for CVE-2020-606{1,2}/coturn
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -14283,14 +14283,14 @@ CVE-2020-6064 (An exploitable out-of-bounds write vulnerability exists in the un
CVE-2020-6063 (An exploitable out-of-bounds write vulnerability exists in the uncompr ...)
NOT-FOR-US: Accusoft ImageGear
CVE-2020-6062 (An exploitable denial-of-service vulnerability exists in the way CoTUR ...)
- - coturn <unfixed> (bug #951876)
+ - coturn 4.5.1.1-1.2 (bug #951876)
[buster] - coturn <no-dsa> (Minor issue)
[stretch] - coturn <no-dsa> (Minor issue)
[jessie] - coturn <not-affected> (Vulnerable code introduced later)
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2020-0985
NOTE: https://github.com/coturn/coturn/commit/e09bcd9f7af5b32c81b37f51835b384b5a7d03a8
CVE-2020-6061 (An exploitable heap overflow vulnerability exists in the way CoTURN 4. ...)
- - coturn <unfixed> (bug #951876)
+ - coturn 4.5.1.1-1.2 (bug #951876)
[buster] - coturn <no-dsa> (Minor issue)
[stretch] - coturn <no-dsa> (Minor issue)
[jessie] - coturn <not-affected> (Vulnerable code introduced later)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6680df0c6352e000f65d708f7a102002296c23ca
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6680df0c6352e000f65d708f7a102002296c23ca
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200418/f9c9a430/attachment.html>
More information about the debian-security-tracker-commits
mailing list