CVE-2024-34593

Name of the Vulnerable Software and Affected Versions librtp.so versions prior to SMR Jul-2024 Release 1

Description The issue is related to improper input validation in the parsing and distribution of RTCP packets. This allows remote attackers to execute arbitrary code with system privilege, but user interaction is required to trigger the vulnerability.

Recommendations For versions prior to SMR Jul-2024 Release 1, update to SMR Jul-2024 Release 1 or later to resolve the issue. As a temporary workaround, consider restricting access to the librtp.so library to minimize the risk of exploitation.