Back to search
CVE-2019-17192
Published: Oct 5, 2019
Modified: Aug 5, 2024
PUBLISHED
Description
The WebRTC component in the Signal Private Messenger application through 4.47.7 for Android processes videoconferencing RTP packets before a callee chooses to answer a call, which might make it easier for remote attackers to cause a denial of service or possibly have unspecified other impact via malformed packets. NOTE: the vendor plans to continue this behavior for performance reasons unless a WebRTC design change occurs
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://news.ycombinator.com/item?id=21161432
x_refsource_MISC
https://twitter.com/moxie/status/1180226374851710976
x_refsource_MISC
https://bugs.chromium.org/p/project-zero/issues/detail?id=1936
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now