CVE-2014-3970

Published: 11 June 2014

The pa_rtp_recv function in modules/rtp/rtp.c in the module-rtp-recv module in PulseAudio 5.0 and earlier allows remote attackers to cause a denial of service (assertion failure and abort) via an empty UDP packet.

Priority

Low

Status

Package Release Status
pulseaudio
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 18.04 LTS (Bionic Beaver) Not vulnerable
(5.0-3)
Ubuntu 16.04 ESM (Xenial Xerus) Not vulnerable
(5.0-3)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was needs-triage)