Univention Bugzilla – Bug 44572
rtmpdump: Multiple issues (4.1)
Last modified: 2019-04-11 19:23:11 CEST
Upstream Debian package version 2.4+20111222.git4e06e21-1+deb7u1 fixes: * The AMF3ReadString function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to cause a denial of service (invalid pointer dereference and process crash). (CVE-2015-8270) * The AMF3CD_AddProp function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to execute arbitrary code. (CVE-2015-8271) * RTMPDump 2.4 allows remote attackers to trigger a denial of service (NULL pointer dereference and process crash). (CVE-2015-8272)
This issue has been filed against UCS 4.1. UCS 4.1 is out of maintenance and many UCS components have vastly changed in later releases. Thus, this issue is now being closed. If this issue still occurs in newer UCS versions, please use "Clone this bug" or reopen this issue. In this case please provide detailed information on how this issue is affecting you.