This repository has been archived by the owner on Jul 12, 2023. It is now read-only.
Vulnerability CVE-2022-46871 #650
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Prerequisites
These are MANDATORY, otherwise the issue will be automatically closed.
Issue description
Hello,
a vulnerability CVE-2022-46871 has been discovered a few month ago in the library libusrsctp:
https://security.snyk.io/vuln/SNYK-UNMANAGED-KURENTOLIBUSRSCTP-3244411
https://www.cve.org/CVERecord?id=CVE-2022-46871
https://security-tracker.debian.org/tracker/CVE-2022-46871
Informations are not very clear but it seems kurento's libusrsctp library is affected by this vulnerabilty (see in snyk's link)
Could you please confirm us if Kurento is affected or not by the CVE-2022-46871 vulnerability, and if yes, if a new release of the library is planned ?
Thank you
Context
How to reproduce?
Expected & current behavior
(Optional) Possible solution
Info about your environment
About Kurento Media Server
The text was updated successfully, but these errors were encountered: