{"id":"CVE-2020-4067","details":"In coturn before version 4.5.1.3, there is an issue whereby STUN/TURN response buffer is not initialized properly. There is a leak of information between different client connections. One client (an attacker) could use their connection to intelligently query coturn to get interesting bytes in the padding bytes from the connection of another client. This has been fixed in 4.5.1.3.","aliases":["GHSA-c8r8-8vp5-6gcm"],"modified":"2026-05-18T05:52:35.422062770Z","published":"2020-06-29T20:15:10.413Z","related":["openSUSE-SU-2020:0937-1","openSUSE-SU-2024:10696-1"],"database_specific":{"unresolved_ranges":[{"vendor_product":"canonical:ubuntu_linux","source":"CPE_FIELD","cpes":["cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*","cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*","cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*","cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*"],"extracted_events":[{"last_affected":"16.04"},{"last_affected":"18.04"},{"last_affected":"19.10"},{"last_affected":"20.04"}]},{"extracted_events":[{"last_affected":"8.0"},{"last_affected":"9.0"},{"last_affected":"10.0"}],"source":"CPE_FIELD","cpes":["cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*","cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*","cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*"],"vendor_product":"debian:debian_linux"},{"extracted_events":[{"last_affected":"31"},{"last_affected":"32"}],"source":"CPE_FIELD","cpes":["cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*","cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*"],"vendor_product":"fedoraproject:fedora"},{"extracted_events":[{"last_affected":"15.2"}],"source":"CPE_FIELD","cpes":["cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*"],"vendor_product":"opensuse:leap"}]},"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5G35UBNSRLL6SYRTODYTMBJ65TLQILUM/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TNJJO77ZLGGFJWNUGP6VDG5HPAC5UDBK/"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00010.html"},{"type":"ADVISORY","url":"https://github.com/coturn/coturn/blob/aab60340b201d55c007bcdc853230f47aa2dfdf1/ChangeLog#L15"},{"type":"ADVISORY","url":"https://github.com/coturn/coturn/security/advisories/GHSA-c8r8-8vp5-6gcm"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2020/07/msg00002.html"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/4415-1/"},{"type":"ADVISORY","url":"https://www.debian.org/security/2020/dsa-4711"},{"type":"REPORT","url":"https://github.com/coturn/coturn/issues/583"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/coturn/coturn","events":[{"introduced":"0"},{"fixed":"bf945bf72fb0b53fa2e8c3789da4e1b636364c3f"}],"database_specific":{"extracted_events":[{"introduced":"0"},{"fixed":"4.5.1.3"}],"source":"CPE_FIELD","cpe":"cpe:2.3:a:coturn_project:coturn:*:*:*:*:*:*:*:*"}}],"versions":["upstream/4.5.1.1","upstream/4.5.1.0","upstream/4.5.0.8","upstream/4.5.0.7","upstream/4.5.0.6","upstream/4.5.0.5","upstream/4.5.0.4","upstream/4.5.0.3","upstream/4.5.0.2","upstream/4.5.0.1","upstream/4.4.5.4","upstream/4.4.5.3","upstream/4.4.5.2","upstream/4.4.5.1","upstream/4.4.4.2","upstream/4.4.4.1","upstream/4.4.2.3","upstream/4.4.2.2","upstream/4.4.2.1","upstream/4.4.1.2","upstream/4.4.1.1","upstream/4.3.3.1","upstream/4.3.2.2","upstream/4.3.2.1","upstream/4.3.1.3","upstream/4.3.1.2","upstream/4.3.1.1","upstream/4.2.3.1","upstream/4.2.2.2","upstream/4.2.1.2","upstream/4.1.2.1","upstream/4.1.1.1","upstream/4.1.0.2","upstream/4.1.0.1","upstream/4.0.1.3","upstream/4.0.1.2","upstream/4.0.0.2","upstream/4.0.0.1","upstream/4.0.0.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-4067.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}]}