Hackpotato

**Name of the Vulnerable Software and Affected Versions** librtp.so versions prior to SMR Jul-2024 Release 1 **Description** The issue is related to improper input validation in parsing RTCP RR packets, which can be exploited by remote attackers to trigger a temporary denial of service. User interaction is required to trigger this issue. **Recommendations** For versions prior to SMR Jul-2024 Release 1, update to the SMR Jul-2024 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting access to the `librtp.so` library to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** librtp.so versions prior to SMR Jul-2024 Release 1 **Description** The issue is related to improper input validation in parsing an item type from RTCP SDES packet, which allows remote attackers to trigger temporary denial of service. User interaction is required for triggering this issue. **Recommendations** For versions prior to SMR Jul-2024 Release 1, update to SMR Jul-2024 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting access to the `librtp.so` library until a patch is available.

**Name of the Vulnerable Software and Affected Versions** librtp.so versions prior to SMR Jul-2024 Release 1 **Description** The issue is related to improper input validation when parsing item data from an RTCP SDES packet, which can be exploited by remote attackers to cause a temporary denial of service. This requires user interaction to trigger the issue. **Recommendations** For versions prior to SMR Jul-2024 Release 1, update to the SMR Jul-2024 Release 1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** librtp.so versions prior to SMR Jul-2024 Release 1 **Description** The issue is related to improper input validation when parsing RTCP SDES packets, which can be exploited by remote attackers to cause a temporary denial of service, but user interaction is required to trigger this issue. **Recommendations** For versions prior to SMR Jul-2024 Release 1, update to the SMR Jul-2024 Release 1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** librtp.so versions prior to SMR Jul-2024 Release 1 **Description** The issue is related to improper input validation in the parsing and distribution of RTCP packets. This allows remote attackers to execute arbitrary code with system privilege, but user interaction is required to trigger the vulnerability. **Recommendations** For versions prior to SMR Jul-2024 Release 1, update to SMR Jul-2024 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting access to the `librtp.so` library to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** SystemUI versions prior to SMR Jul-2024 Release 1 **Description** The issue is related to improper access control in the clickAdapterItem of SystemUI, allowing local attackers to launch privileged activities. **Recommendations** For versions prior to SMR Jul-2024 Release 1, update to SMR Jul-2024 Release 1 or later to resolve the issue.