Unrated severityNVD Advisory· Published Mar 27, 2020· Updated Aug 4, 2024
CVE-2020-6095
CVE-2020-6095
Description
An exploitable denial of service vulnerability exists in the GstRTSPAuth functionality of GStreamer/gst-rtsp-server 1.14.5. A specially crafted RTSP setup request can cause a null pointer deference resulting in denial-of-service. An attacker can send a malicious packet to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- GStreamer/gst-rtsp-serverdescription
- Range: =1.14.5
- osv-coords3 versionspkg:rpm/opensuse/gstreamer-rtsp-server&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/gstreamer-rtsp-server&distro=openSUSE%20Tumbleweedpkg:rpm/suse/gstreamer-rtsp-server&distro=SUSE%20Package%20Hub%2015%20SP1
< 1.12.5-bp151.4.3.1+ 2 more
- (no CPE)range: < 1.12.5-bp151.4.3.1
- (no CPE)range: < 1.18.5-1.1
- (no CPE)range: < 1.12.5-bp151.4.3.1
Patches
Vulnerability mechanics
References
4- lists.opensuse.org/opensuse-security-announce/2020-04/msg00029.htmlmitrevendor-advisoryx_refsource_SUSE
- security.gentoo.org/glsa/202009-05mitrevendor-advisoryx_refsource_GENTOO
- gitlab.freedesktop.org/gstreamer/gst-rtsp-server/-/commit/44ccca3086dd81081d72ca0b21d0ecdde962fb1amitrex_refsource_MISC
- www.talosintelligence.com/vulnerability_reports/TALOS-2020-1018mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.