Unrated severityOSV Advisory· Published Jan 25, 2019· Updated Aug 5, 2024
CVE-2018-20743
CVE-2018-20743
Description
murmur in Mumble through 1.2.19 before 2018-08-31 mishandles multiple concurrent requests that are persisted in the database, which allows remote attackers to cause a denial of service (daemon hang or crash) via a message flood.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8- osv-coords6 versionspkg:rpm/opensuse/mumble&distro=openSUSE%20Leap%2015.0pkg:rpm/opensuse/mumble&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/mumble&distro=openSUSE%20Tumbleweedpkg:rpm/suse/mumble&distro=SUSE%20Package%20Hub%2012pkg:rpm/suse/mumble&distro=SUSE%20Package%20Hub%2015pkg:rpm/suse/mumble&distro=SUSE%20Package%20Hub%2015%20SP1
< 1.2.19-bp150.3.3.1+ 5 more
- (no CPE)range: < 1.2.19-bp150.3.3.1
- (no CPE)range: < 1.2.19-bp150.3.3.1
- (no CPE)range: < 1.3.4-2.7
- (no CPE)range: < 1.2.19-bp150.3.3.1
- (no CPE)range: < 1.2.19-bp150.3.3.1
- (no CPE)range: < 1.2.19-bp151.6.3.1
Patches
Vulnerability mechanics
References
9- lists.opensuse.org/opensuse-security-announce/2019-07/msg00045.htmlmitrevendor-advisoryx_refsource_SUSE
- lists.opensuse.org/opensuse-security-announce/2019-08/msg00023.htmlmitrevendor-advisoryx_refsource_SUSE
- lists.opensuse.org/opensuse-security-announce/2020-01/msg00058.htmlmitrevendor-advisoryx_refsource_SUSE
- www.debian.org/security/2019/dsa-4402mitrevendor-advisoryx_refsource_DEBIAN
- bugs.debian.org/919249mitrex_refsource_MISC
- github.com/mumble-voip/mumble/issues/3505mitrex_refsource_MISC
- github.com/mumble-voip/mumble/pull/3510mitrex_refsource_MISC
- github.com/mumble-voip/mumble/pull/3512mitrex_refsource_MISC
- lists.debian.org/debian-lts-announce/2019/02/msg00006.htmlmitremailing-listx_refsource_MLIST
News mentions
0No linked articles in our index yet.