DescriptionA buffer overflow was discovered in the URL-authentication backend of the Icecast before 2.4.4. If the backend is enabled, then any malicious HTTP client can send a request for that specific resource including a crafted header, leading to denial of service and potentially remote code execution.
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having important severity.SUSE Bugzilla entry: 1114434 [RESOLVED / FIXED] SUSE Security Advisories:
- openSUSE-SU-2018:3754-1, published Tue, 13 Nov 2018 15:12:17 +0100 (CET)
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE Leap 15.0|| ||Patchnames:
|openSUSE Leap 42.3|| ||Patchnames: