Source: rtpengine Version: 12.5.1.35-1 Severity: important Tags: security upstream X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>
Hi, The following vulnerability was published for rtpengine. CVE-2025-53399[0]: | In Sipwise rtpengine before 13.4.1.1, an origin-validation error in | the endpoint-learning logic of the media-relay core allows remote | attackers to inject or intercept RTP/SRTP media streams via RTP | packets (except when the relay is configured for strict source and | learning disabled). Version 13.4.1.1 fixes the heuristic mode by | limiting exposure to the first five packets, and introduces a | recrypt flag that fully prevents SRTP attacks when both mitigations | are enabled. I could not isolate the commits, but they might be related to the MT#62735 fixes in the 'rfuchs/security' branch[3]. If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2025-53399 https://www.cve.org/CVERecord?id=CVE-2025-53399 [1] https://www.openwall.com/lists/oss-security/2025/07/31/1 [2] https://github.com/EnableSecurity/advisories/tree/master/ES2025-01-rtpengine-improper-behavior-bleed-inject [3] https://github.com/sipwise/rtpengine/commits/rfuchs/security/ Please adjust the affected versions in the BTS as needed. Regards, Salvatore
