Live555 security vulnerability

Live555 is a cross-platform C++ open-source project that provides solutions for streaming media. It implements support for standard streaming media transmission protocols such as RTP/RTCP, RTSP, and SIP. Live555 has a security vulnerability, which stems from a segmentation error in the...

Linux Distros Unpatched Vulnerability : CVE-2025-65407

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free in the MPEG1or2Demux::newElementaryStream function of Live555 Streaming Media v2018.09.02 allows attackers to cause a Denial of Service DoS via...

EUVD-2019-17261

Malware in sbrugna...

EUVD-2021-24834

Malware in sbrugna...

EUVD-2019-17262

Malware in sbrugna...

EUVD-2019-6244

Malware in sbrugna...

EUVD-2021-24835

Malware in sbrugna...

EUVD-2019-16857

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2021-38380

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Live555 through 1.08 mishandles huge requests for the same MP3 stream, leading to recursion and s stack- based buffer over-read. An attacker can leverage this t...

Linux Distros Unpatched Vulnerability : CVE-2019-7733

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove...

CVE-2021-38380

Live555 through 1.08 mishandles huge requests for the same MP3 stream, leading to recursion and s stack-based buffer over-read. An attacker can leverage this to launch a DoS attack...

CVE-2021-38382

Live555 through 1.08 does not handle Matroska and Ogg files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash...

CVE-2019-15232

Live555 before 2019.08.16 has a Use-After-Free because GenericMediaServer::createNewClientSessionWithId can generate the same client session ID in succession, which is mishandled by the MPEG1or2 and Matroska file demultiplexors...

CVE-2023-37117

A heap-use-after-free vulnerability was found in live555 version 2023.05.10 while handling the SETUP...

SUSE CVE-2019-7314

liblivemedia in Live555 before 2019.02.03 mishandles the termination of an RTSP stream after RTP/RTCP-over-RTSP has been set up, which could lead to a Use-After-Free error that causes the RTSP server to crash Segmentation fault or possibly have unspecified other impact...

Buffer Overflow

Live555 is vulnerable to buffer overflow. The vulnerability exists because huge requests for the same MP3 stream, lead to recursion and s stack-based buffer over-read which allows an attacker to cause a denial of service...

CVE-2021-39282

Live555 through 1.08 has a memory leak in AC3AudioStreamParser for AC3 files...

CVE-2021-38380

Live555 through 1.08 mishandles huge requests for the same MP3 stream, leading to recursion and s stack-based buffer over-read. An attacker can leverage this to launch a DoS attack...

UBUNTU-CVE-2021-38380

Live555 through 1.08 mishandles huge requests for the same MP3 stream, leading to recursion and s stack-based buffer over-read. An attacker can leverage this to launch a DoS attack...

CVE-2019-15232

Live555 before 2019.08.16 has a Use-After-Free because GenericMediaServer::createNewClientSessionWithId can generate the same client session ID in succession, which is mishandled by the MPEG1or2 and Matroska file demultiplexors...