mirrors/coturn
1
0
Fork 0
mirror of https://github.com/coturn/coturn.git synced 2026-04-03 19:30:59 +02:00
Code Issues Projects Releases Wiki Activity
137 Commits 22 Branches 134 Tags
Commit Graph

137 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mészáros Mihály
3a8b9805d7 Update changelog for 4.5.0.5-1+deb9u3 release debian/4.5.0.5-1+deb9u3 2020-12-15 10:55:39 +01:00
Mészáros Mihály
efb058c758 Add misi@majd.eu to uploaders list 2020-12-15 10:55:07 +01:00
Mészáros Mihály
4ac1f5e9c1 Fix-CVE-2020-26262-Enable-Security 2020-12-14 13:39:18 +01:00
Salvatore Bonaccorso
202752d79c Import Debian changes 4.5.0.5-1+deb9u2 
coturn (4.5.0.5-1+deb9u2) stretch-security; urgency=high
.
  * Non-maintainer upload by the Security Team.
  * specially crafted HTTP POST request can lead to heap overflow which can
    result in information leak (CVE-2020-6061) (Closes: #951876)
  * specially crafted HTTP POST request can lead to server crash and denial of
    service (CVE-2020-6062) (Closes: #951876)
  * init with zero any new or reused stun buffers (CVE-2020-4067)
debian/4.5.0.5-1+deb9u2 		2020-12-14 13:34:33 +01:00
Mészáros Mihály
f7b6fc1abd No packaging change for security update debian/4.5.0.5-1+deb9u1 2019-01-24 12:24:29 +01:00
Mészáros Mihály
1f16b57d49 Remove me from uploaders.. 2019-01-24 12:24:29 +01:00
Mészáros Mihály
d5ab909cef Tidy changelog 2019-01-24 12:24:10 +01:00
Mészáros Mihály
756ebc5e27 Add fixes to debian/changelog 2019-01-21 12:17:12 +01:00
Mészáros Mihály
96adc66385 HotFix: for 3 Vulnerability 
For more details see:
- CVE-2018-4056 - coTURN Administrator Web Portal SQL injection vulnerability
- CVE-2018-4058 - coTURN TURN server unsafe loopback forwarding default configuration vulnerability
- CVE-2018-4059 - coTURN server unsafe telnet admin portal default configuration vulnerability

These patches address hotfix the 3 CVE above.
* Disable-Web-admin-interface-due-Security-Vulnerability.patch
It disables hardcocded web admin interface until 4.5.1.0 where it will be fixed correctly.
* Disable-loopback-peers-due-Vulnerability.patch
Disable by default loopback-peer functionality.
* empty-cli-password-not-allowed-disable-telnet-cli.patch
Disable telnet cli if the cli-password is empty.
 2019-01-18 15:47:42 +01:00
Mészáros Mihály
302d9e301d created branch for stretch-security uploads 2019-01-18 15:47:26 +01:00
Oleg Moskalenko
1eae563155 1) sync to upstream 4.5.0.5 
2) lintian errors fixed
debian/4.5.0.5-1 		2016-10-16 23:58:06 -07:00
Oleg Moskalenko
2f51521871 Merge tag 'upstream/4.5.0.5' 
Upstream version 4.5.0.5
 2016-10-16 23:37:00 -07:00
Oleg Moskalenko
b604bbd4ae Imported Upstream version 4.5.0.5 upstream/4.5.0.5 2016-10-16 23:36:58 -07:00
Oleg Moskalenko
f11602b7e5 trying to fix piuparts report debian/4.5.0.4-4 2016-08-23 22:03:53 -07:00
Oleg Moskalenko
79fe2851fa itrying to fix piuparts report 2016-08-22 23:57:06 -07:00
Oleg Moskalenko
cc52a884c9 Debian Policy upgraded to 3.9.8 2016-08-22 01:32:59 -07:00
Oleg Moskalenko
b4857f77a4 * OpenSSL compatibility (closes: #828271) debian/4.5.0.4-1 2016-08-22 00:11:32 -07:00
Oleg Moskalenko
9296fa9003 Merge tag 'upstream/4.5.0.4' 
Upstream version 4.5.0.4
 2016-08-21 23:52:33 -07:00
Oleg Moskalenko
7352f1f92d Imported Upstream version 4.5.0.4 upstream/4.5.0.4 2016-08-21 23:52:31 -07:00
Oleg Moskalenko
eef9e796f3 SSLv3 support removed, closes: #804440 debian/4.5.0.3-1 2015-11-15 23:40:16 -08:00
Oleg Moskalenko
fbf39ce8e1 Merge tag 'upstream/4.5.0.3' 
Upstream version 4.5.0.3
 2015-11-15 23:28:23 -08:00
Oleg Moskalenko
7feca5453f Imported Upstream version 4.5.0.3 upstream/4.5.0.3 2015-11-15 23:28:21 -08:00
Oleg Moskalenko
6bb39028e5 bug #80544 fixed debian/4.5.0.2-3 2015-10-02 23:51:27 -07:00
Oleg Moskalenko
54dcbfa278 DTLS segfault fixed 2015-09-30 00:25:13 -07:00
Oleg Moskalenko
1cb925124a Imported Upstream version 4.5.0.2 upstream/4.5.0.2 2015-09-30 00:24:20 -07:00
Oleg Moskalenko
af2db6a39b Merge tag 'upstream/4.5.0.2' 
Upstream version 4.5.0.2
 2015-09-30 00:24:20 -07:00
Oleg Moskalenko
0e879cf362 package for Sid 2015-09-28 00:17:35 -07:00
Oleg Moskalenko
06963949da copyright fixed 2015-09-26 20:55:34 -07:00
Oleg Moskalenko
be7ec788f3 typo fixed 2015-09-26 18:06:55 -07:00
Oleg Moskalenko
40c2a1435e Specs adjusted 2015-09-26 15:04:19 -07:00
Oleg Moskalenko
67d9c8fe11 Sync to 4.5.0.1 2015-09-20 21:59:03 -07:00
Oleg Moskalenko
d4bc5ecf23 Imported Upstream version 4.5.0.1 upstream/4.5.0.1 2015-09-20 21:57:38 -07:00
Oleg Moskalenko
017cc6133f Merge tag 'upstream/4.5.0.1' 
Upstream version 4.5.0.1
 2015-09-20 21:57:38 -07:00
Oleg Moskalenko
480dec7c6b github migration 2015-07-19 14:11:12 -07:00
Oleg Moskalenko
61ec445338 migrated to github 2015-07-19 14:01:04 -07:00
Oleg Moskalenko
bf5b1cf8d5 Merge tag 'upstream/4.4.5.4' 
Upstream version 4.4.5.4
 2015-07-19 14:00:08 -07:00
Oleg Moskalenko
c5f9e2b8c1 Imported Upstream version 4.4.5.4 upstream/4.4.5.4 2015-07-19 14:00:07 -07:00
Oleg Moskalenko
9f1b12ec6d sync to 4.4.5.3: security fix 2015-06-28 20:36:25 -07:00
Oleg Moskalenko
8dd77b0dab Merge tag 'upstream/4.4.5.3' 
Upstream version 4.4.5.3
 2015-06-28 20:34:32 -07:00
Oleg Moskalenko
a42fdb98e6 Imported Upstream version 4.4.5.3 upstream/4.4.5.3 2015-06-28 20:34:31 -07:00
Oleg Moskalenko
333c93df57 sync to upstream 4.4.5.2 2015-06-06 01:07:58 -07:00
Oleg Moskalenko
c7477fbe2b Imported Upstream version 4.4.5.2 upstream/4.4.5.2 2015-06-06 01:06:47 -07:00
Oleg Moskalenko
b5a9483434 Merge tag 'upstream/4.4.5.2' 
Upstream version 4.4.5.2
 2015-06-06 01:06:47 -07:00
Oleg Moskalenko
83a8d776dc isync to 4.4.5.1 2015-05-27 00:18:26 -07:00
Oleg Moskalenko
800ff2be5c Merge tag 'upstream/4.4.5.1' 
Upstream version 4.4.5.1
 2015-05-27 00:16:31 -07:00
Oleg Moskalenko
d23e516421 Imported Upstream version 4.4.5.1 upstream/4.4.5.1 2015-05-27 00:16:30 -07:00
Oleg Moskalenko
9a5d51e7fb sync to 4.4.4.2 2015-04-05 21:25:16 -07:00
Oleg Moskalenko
809c357901 Imported Upstream version 4.4.4.2 upstream/4.4.4.2 2015-04-05 21:24:00 -07:00
Oleg Moskalenko
9585c5c2ac Merge tag 'upstream/4.4.4.2' 
Upstream version 4.4.4.2
 2015-04-05 21:24:00 -07:00
Oleg Moskalenko
4951ce5ea3 sctp script added 2015-03-23 23:44:16 -07:00