Bugzilla – Bug 862527
VUL-0: CVE-2014-0044: mumble: NULL pointer dereference leads to denial of service
Last modified: 2014-03-10 13:22:16 UTC
CVE-2014-0044 and CVE-2014-0045: two denial of service flaws were reported in Mumble: CVE-2014-0044 A malformed Opus voice packet sent to a Mumble client could trigger a NULL pointer dereference or an out-of-bounds array access, leading to a crash (Denial of Service). This can be triggered remotely by an entity participating in a Mumble voice chat. CVE-2014-0045: A malformed Opus voice packet sent to a Mumble client could trigger a heap-based buffer overflow. This causes a client crash (Denial of Service) and can potentially be used to execute arbitrary code, though this is unconfirmed. This issue can be triggered remotely by an entity participating in a Mumble voice chat. This has been corrected in upstream version 1.2.5 References: http://mumble.info/security/Mumble-SA-2014-001.txt http://mumble.info/security/Mumble-SA-2014-002.txt https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-0044 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-0045
bugbot adjusting priority
This is an autogenerated message for OBS integration: This bug (862527) was mentioned in https://build.opensuse.org/request/show/221750 Factory / mumble https://build.opensuse.org/request/show/221751 12.3 / mumble https://build.opensuse.org/request/show/221752 13.1 / mumble
openSUSE-SU-2014:0271-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 855478,862527 CVE References: CVE-2014-0044,CVE-2014-0045 Sources used: openSUSE 13.1 (src): mumble-1.2.5-2.8.2 openSUSE 12.3 (src): mumble-1.2.5-21.4.1
all released