CVE-2014-3970
- Source
- https://cve.org/CVERecord?id=CVE-2014-3970
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2014-3970.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2014-3970
- Downstream
- Related
- Withdrawn
- 2026-01-27T04:12:46.274785Z
- Published
- 2014-06-11T14:55:09Z
- Modified
- 2026-01-27T04:12:46.274785Z
- Summary
- [none]
- Details
-
The partprecv function in modules/rtp/rtp.c in the module-rtp-recv module in PulseAudio 5.0 and earlier allows remote attackers to cause a denial of service (assertion failure and abort) via an empty UDP packet.
- References
-
- http://advisories.mageia.org/MGASA-2014-0440.html
- http://secunia.com/advisories/60624
- http://www.mandriva.com/security/advisories?name=MDVSA-2015:134
- http://lists.freedesktop.org/archives/pulseaudio-discuss/2014-May/020740.html
- http://seclists.org/oss-sec/2014/q2/429
- http://seclists.org/oss-sec/2014/q2/437
- http://www.securityfocus.com/bid/67814