CVE-2020-10575

An issue was discovered in Janus through 0.9.1. plugins/janus_videocall.c in the VideoCall plugin mishandles session management because a race condition causes some references to be freed too early or too many times.
References
Link Resource
https://github.com/meetecho/janus-gateway/pull/1994 Patch Third Party Advisory
https://github.com/meetecho/janus-gateway/pull/1994 Patch Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:meetecho:janus:*:*:*:*:*:*:*:*

History

21 Nov 2024, 04:55

Type Values Removed Values Added
References () https://github.com/meetecho/janus-gateway/pull/1994 - Patch, Third Party Advisory () https://github.com/meetecho/janus-gateway/pull/1994 - Patch, Third Party Advisory

Information

Published : 2020-03-14 20:15

Updated : 2024-11-21 04:55


NVD link : CVE-2020-10575

Mitre link : CVE-2020-10575

CVE.ORG link : CVE-2020-10575


JSON object : View

Products Affected

meetecho

  • janus
CWE
CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')