Information on source package liblivemedia

Available versions

ReleaseVersion
jessie2014.01.13-1+deb8u3
stretch2016.11.28-1+deb9u2
buster2018.11.26-1.1

Open issues

BugjessiestretchbusterDescription
CVE-2023-37117vulnerablevulnerable (no DSA, ignored)vulnerable (no DSA, ignored)A heap-use-after-free vulnerability was found in live555 version 2023. ...
CVE-2021-41396vulnerablevulnerable (no DSA, ignored)vulnerable (no DSA, ignored)Live555 through 1.08 does not handle socket connections properly. A hu ...
CVE-2021-39283vulnerablevulnerable (no DSA, ignored)vulnerable (no DSA, ignored)liveMedia/FramedSource.cpp in Live555 through 1.08 allows an assertion ...
CVE-2021-39282vulnerablevulnerable (no DSA, ignored)vulnerable (no DSA, ignored)Live555 through 1.08 has a memory leak in AC3AudioStreamParser for AC3 ...
CVE-2021-38382vulnerablevulnerable (no DSA)vulnerable (no DSA, ignored)Live555 through 1.08 does not handle Matroska and Ogg files properly. ...
CVE-2021-38381vulnerablevulnerable (no DSA)vulnerable (no DSA, ignored)Live555 through 1.08 does not handle MPEG-1 or 2 files properly. Sendi ...
CVE-2021-38380vulnerablevulnerable (no DSA)vulnerable (no DSA, ignored)Live555 through 1.08 mishandles huge requests for the same MP3 stream, ...
CVE-2021-28899vulnerablevulnerable (no DSA)vulnerable (no DSA)Vulnerability in the AC3AudioFileServerMediaSubsession, ADTSAudioFileS ...
CVE-2020-24027vulnerablevulnerable (no DSA)vulnerable (no DSA)In Live Networks, Inc., liblivemedia version 20200625, there is a pote ...
CVE-2019-15232vulnerable (no DSA, postponed)vulnerable (no DSA, postponed)vulnerable (no DSA, postponed)Live555 before 2019.08.16 has a Use-After-Free because GenericMediaSer ...
CVE-2019-7733vulnerable (no DSA, postponed)vulnerable (no DSA)vulnerable (no DSA)In Live555 0.95, there is a buffer overflow via a large integer in a C ...

Open unimportant issues

BugjessiestretchbusterDescription
CVE-2019-7732vulnerablevulnerablevulnerableIn Live555 0.95, a setup packet can cause a memory leak leading to DoS ...

Resolved issues

BugDescription
CVE-2019-9215In Live555 before 2019.02.27, malformed headers lead to invalid memory ...
CVE-2019-7314liblivemedia in Live555 before 2019.02.03 mishandles the termination o ...
CVE-2019-6256A Denial of Service issue was discovered in the LIVE555 Streaming Medi ...
CVE-2018-4013An exploitable code execution vulnerability exists in the HTTP packet- ...
CVE-2013-6934The parseRTSPRequestString function in Live Networks Live555 Streaming ...
CVE-2013-6933The parseRTSPRequestString function in Live Networks Live555 Streaming ...

Security announcements

DSA / DLADescription
DLA-1720-1liblivemedia - security update
DSA-4408-1liblivemedia - security update
DLA-1690-1liblivemedia - security update
DSA-4343-1liblivemedia - security update
DLA-1582-1liblivemedia - security update
DSA-3156-1liblivemedia - security update

Search for package or bug name: Reporting problems