CVE-2020-26262 : bypass of Coturn's default access control protection (upgrade to coturn 4.5.2 needed) (#12301) · Issues · alpine / aports

CVE-2020-26262 : bypass of Coturn's default access control protection (upgrade to coturn 4.5.2 needed)

Hello,

We are currently using the coturn package provided by Alpine Linux and we have recently stumbled on CVE-2020-26262.

This CVE is fixed by the release 4.5.2 of coturn and I wondered when this would be available or what is the process to make that happen.

I can propose a merge request on this particular matter provided some guidance.

Edited Jan 26, 2021 by Leo

To upload designs, you'll need to enable LFS and have admin enable hashed storage. More information