You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
A vulnerability has been identified in the libusrsctp library, itself used in Kurento. Is Kurento affected by this vulnerability and if so, which versions?
The text was updated successfully, but these errors were encountered:
Why do they hide what version is affected by the vulnerability? I went to that link (and several links from there) and still am wondering how to know if Kurento 6.x might be affected.
Kurento 7 uses the package libusrsctp1 from Ubuntu 20.04, so we'd rely on the Ubuntu security team to maintain security patches for it.
The commit you linked is from July 2020, and the package version indicates that it was built on 2019, so this probably calls for opening a security ticket with the folks at Canonical. Would you be able to do that and let us know so we can track the state of this issue?
Hi,
A vulnerability has been identified in the libusrsctp library, itself used in Kurento. Is Kurento affected by this vulnerability and if so, which versions?
The text was updated successfully, but these errors were encountered: