High7.5Red Hat & Ubuntu Linux Updated
DTLS certificate Subject DN stack buffer overflow in openssl_verify_callback
CVE-2026-59692 Published Jul 8, 2026Updated by vendor Jul 8, 2026
CVE-2026-59692
Affected products & platforms
Red Hat & Ubuntu LinuxUnclassified
Summary
DTLS certificate Subject DN stack buffer overflow in openssl_verify_callback. Red Hat rates this important (CVSS 7.5). Weakness: CWE-121. No fix erratum has been published yet; monitor the Red Hat CVE page and apply the RHSA when released.
Mitigation checklist
Recommended fix / mitigation
- There is no complete mitigation for this vulnerability. The following measures can reduce risk: 1. If WebRTC/DTLS functionality is not required, remove the DTLS plugin shared object from the GStreamer plugins directory (typically /usr/lib64/gstreamer-1.0/libgstdtls.so). 2. Restrict network access to WebRTC/DTLS endpoints to trusted peers only via firewall rules. 3. Deploy GStreamer WebRTC services behind a reverse proxy or media server that validates DTLS certificates before forwarding.
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.