Описание
Live555 through 1.08 mishandles huge requests for the same MP3 stream, leading to recursion and s stack-based buffer over-read. An attacker can leverage this to launch a DoS attack.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| liblivemedia | removed | package | ||
| liblivemedia | ignored | buster | package | |
| liblivemedia | no-dsa | stretch | package |
Примечания
http://lists.live555.com/pipermail/live-devel/2021-August/021954.html
http://www.live555.com/liveMedia/public/changelog.txt#[2021.08.04]
EPSS
Связанные уязвимости
Live555 through 1.08 mishandles huge requests for the same MP3 stream, leading to recursion and s stack-based buffer over-read. An attacker can leverage this to launch a DoS attack.
Live555 through 1.08 mishandles huge requests for the same MP3 stream, leading to recursion and s stack-based buffer over-read. An attacker can leverage this to launch a DoS attack.
Live555 through 1.08 mishandles huge requests for the same MP3 stream, leading to recursion and s stack-based buffer over-read. An attacker can leverage this to launch a DoS attack.
Уязвимость компонента MP3 Stream Handler группы библиотек для потоковой передачи мультимедиа Live555, позволяющая нарушителю вызвать отказ в обслуживании
EPSS