[SECURITY] [DSA 4343-1] liblivemedia security update

From: Moritz Muehlenhoff <jmm@debian.org>
To: bugtraq@securityfocus.com
Cc:
Subject: [SECURITY] [DSA 4343-1] liblivemedia security update
Date:


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4343-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
November 23, 2018                     https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : liblivemedia
CVE ID         : CVE-2018-4013

It was discovered that a buffer overflow in liveMedia, a set of C++
libraries for multimedia streaming could result in the execution of
arbitrary code when parsing a malformed RTSP stream.

For the stable distribution (stretch), this problem has been fixed in
version 2016.11.28-1+deb9u1.

We recommend that you upgrade your liblivemedia packages.

For the detailed security status of liblivemedia please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/liblivemedia

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=RZP5
-----END PGP SIGNATURE-----





Copyright © 1995-2019 LinuxRocket.net. All rights reserved.