CVE-2015-6360

Опубликовано: 21 апр. 2016

Источник: debian

EPSS Средний

Описание

The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
srtp	fixed	1.5.3~dfsg-1	experimental	package
srtp	fixed	1.4.5~20130609~dfsg-1.2		package

Примечания

Fix: https://github.com/cisco/libsrtp/commit/704a31774db0dd941094fd2b47c21638b8dc3de2
Fixup: https://github.com/cisco/libsrtp/commit/be95365fbb4788b688cab7af61c65b7989055fb4
Fixup: https://github.com/cisco/libsrtp/commit/be06686c8e98cc7bd934e10abb6f5e971d03f8ee
Fixup: https://github.com/cisco/libsrtp/commit/cdc69f2acde796a4152a250f869271298abc233f

EPSS

Процентиль: 95%

0.18485

Средний

Связанные уязвимости

CVE-2015-6360

CVSS3: 7.5

ubuntu

почти 10 лет назад

The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686.

CVE-2015-6360

redhat

почти 10 лет назад

The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686.

CVE-2015-6360

CVSS3: 7.5

nvd

почти 10 лет назад

The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686.

openSUSE-SU-2016:2266-1

suse-cvrf

больше 9 лет назад

Security update for libsrtp

GHSA-5m3h-4mfw-792p

CVSS3: 7.5

github

больше 3 лет назад

The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686.

EPSS

Процентиль: 95%

0.18485

Средний