coturn 4.5.0.7-1ubuntu2.18.04.1 source package in Ubuntu
Changelog
coturn (4.5.0.7-1ubuntu2.18.04.1) bionic-security; urgency=medium
* [1328ae1] HotFix: for 3 Vulnerability.
For more details see:
- CVE-2018-4056 - coTURN Administrator Web Portal SQL injection vulnerability
- CVE-2018-4058 - coTURN TURN server unsafe loopback forwarding default configuration vulnerability
- CVE-2018-4059 - coTURN server unsafe telnet admin portal default configuration vulnerability
These patches address hotfix the 3 CVE above.
* Disable-Web-admin-interface-due-Security-Vulnerability.patch
It disables hardcocded web admin interface until 4.5.1.0 where it will be fixed correctly.
* Disable-loopback-peers-due-Vulnerability.patch
Disable by default loopback-peer functionality.
* empty-cli-password-not-allowed-disable-telnet-cli.patch
Disable telnet cli if the cli-password is empty.
-- Mészáros Mihály <email address hidden> Wed, 06 Feb 2019 14:56:38 +0100
Upload details
- Uploaded by:
- Mészáros Mihály
- Sponsored by:
- Eduardo Barretto
- Uploaded to:
- Bionic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| coturn_4.5.0.7.orig.tar.gz | 391.2 KiB | 86248c541a1184eb388c54d4178cffbf16ef53504fbb60106e575194f078b221 |
| coturn_4.5.0.7-1ubuntu2.18.04.1.debian.tar.xz | 10.8 KiB | 697fe51507e8ffb5a30ec381dadd7e499fcd3b0bb60619dfe16540f07ca96f5c |
| coturn_4.5.0.7-1ubuntu2.18.04.1.dsc | 2.2 KiB | 3ebba60b317fb52557e7232cdceb4f4dc73eb21983caa452cefd37ee777953ea |
Available diffs
Binary packages built by this source
- coturn: TURN and STUN server for VoIP
STUN (Session Traversal Utilities for NAT) and TURN (Traversal Using Relays
around NAT) are protocols that can be used to provide NAT traversal for VoIP
and WebRTC. This package provides a VoIP media traffic NAT traversal server
and gateway.
.
Supported RFCs:
TURN specs:
* RFC 5766 - base TURN specs;
* RFC 6062 - TCP relaying TURN extension;
* RFC 6156 - IPv6 extension for TURN;
* RFC 7635 - OAuth third-party TURN/STUN authorization;
* DTLS support as client protocol
http://tools.ietf. org/html/ draft-petithugu enin-tram- turn-dtls- 00
* Mobile ICE (MICE) support
http://tools.ietf. org/html/ draft-wing- tram-turn- mobility- 03
* TURN ORIGIN specs for multi-tenant servers
http://tools.ietf. org/html/ draft-johnston- tram-stun- origin- 02
* TURN Bandwidth draft specs
http://tools.ietf. org/html/ draft-thomson- tram-turn- bandwidth- 00
* SSODA (dual allocation) draft specs
http://tools.ietf. org/html/ draft-martinsen -tram-ssoda- 00
.
STUN specs:
* RFC 3489 - obsolete "classic" STUN specs;
* RFC 5389 - base "new" STUN specs;
* RFC 5769 - test vectors for STUN protocol testing;
* RFC 5780 - NAT behavior discovery support.
.
The implementation fully supports UDP, TCP, TLS, and DTLS as protocols between
the TURN client and the TURN server. Both UDP and TCP relaying are supported.
.
SQLite, MySQL, PostgreSQL and Redis are supported for the user
repository (if authentication is required).
The long-term credentials mechanism is supported.
For WebRTC applications,
the TURN server REST API for time-limited
secret-based authentication is implemented.
The third-party authentication
specs (OAuth-based) are supported, too.
.
Load balancing can be implemented either by DNS round-robin mechanism, or with
the external networking tools, or by
the built-in ALTERNATE-SERVER mechanism.
.
The implementation is intended to be simple to install and configure.
The project focuses on performance, scalability, and simplicity.
The aim is to provide an enterprise-grade TURN solution.
- coturn-dbgsym: debug symbols for coturn
