coturn 4.5.0.7-1ubuntu2.18.10.1 source package in Ubuntu
Changelog
coturn (4.5.0.7-1ubuntu2.18.10.1) cosmic-security; urgency=medium
* [1328ae1] HotFix: for 3 Vulnerability.
For more details see:
- CVE-2018-4056 - coTURN Administrator Web Portal SQL injection vulnerability
- CVE-2018-4058 - coTURN TURN server unsafe loopback forwarding default configuration vulnerability
- CVE-2018-4059 - coTURN server unsafe telnet admin portal default configuration vulnerability
These patches address hotfix the 3 CVE above.
* Disable-Web-admin-interface-due-Security-Vulnerability.patch
It disables hardcocded web admin interface until 4.5.1.0 where it will be fixed correctly.
* Disable-loopback-peers-due-Vulnerability.patch
Disable by default loopback-peer functionality.
* empty-cli-password-not-allowed-disable-telnet-cli.patch
Disable telnet cli if the cli-password is empty.
-- Mészáros Mihály <email address hidden> Wed, 06 Feb 2019 14:56:38 +0100
Upload details
- Uploaded by:
- Mészáros Mihály
- Sponsored by:
- Eduardo Barretto
- Uploaded to:
- Cosmic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| coturn_4.5.0.7.orig.tar.gz | 391.2 KiB | 86248c541a1184eb388c54d4178cffbf16ef53504fbb60106e575194f078b221 |
| coturn_4.5.0.7-1ubuntu2.18.10.1.debian.tar.xz | 10.8 KiB | edd1c0fe7c657e65a661031511cd61cdf83540a4c1e277478305f5deaae56c12 |
| coturn_4.5.0.7-1ubuntu2.18.10.1.dsc | 2.2 KiB | bfa15a5233a96f689d35a0e0a6e7c2fbecce193240fd677c771c5222a9a74376 |
Available diffs
Binary packages built by this source
- coturn: No summary available for coturn in ubuntu cosmic.
No description available for coturn in ubuntu cosmic.
- coturn-dbgsym: No summary available for coturn-dbgsym in ubuntu cosmic.
No description available for coturn-dbgsym in ubuntu cosmic.
