search

ossrs / srs

SRS is a simple, high-efficiency, real-time media server supporting RTMP, WebRTC, HLS, HTTP-FLV, HTTP-TS, SRT, MPEG-DASH, and GB28181.
https://ossrs.io
MIT License
25.65k stars 5.38k forks source link

DemoCallbackServer: Critical security vulnerability #3564

Closed pwntester closed 1 year ago

pwntester commented 1 year ago

Hi,

We reported a security vulnerability a while ago through the private disclosure feature. Can any maintainer please take a look?

https://github.com/ossrs/srs/security/advisories/GHSA-vpr5-779c-cx62

winlinvip commented 1 year ago

Great job! We will investigate this security vulnerability.

pwntester commented 1 year ago

Thanks, now that the issue is being handled in the GHSA, I think we can close this issue. Thanks!