Описание
In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| liblivemedia | fixed | 2019.05.12-1 | experimental | package |
| liblivemedia | fixed | 2019.10.11-2 | package | |
| liblivemedia | no-dsa | buster | package | |
| liblivemedia | no-dsa | stretch | package | |
| liblivemedia | postponed | jessie | package |
Примечания
https://github.com/rgaufman/live555/issues/21
fixed in 2019.05.12: http://www.live555.com/liveMedia/public/changelog.txt
Связанные уязвимости
In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove.
In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove.
In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove.
Уязвимость группы библиотек для потоковой передачи мультимедиа Live555, связанная с целочисленным переполнением, позволяющая нарушителю вызвать отказ в обслуживании