VulnerableCode Package Details - pkg:alpm/archlinux/live-media@2021.07.20-1

Search for packages

Package details: pkg:alpm/archlinux/live-media@2021.07.20-1

Essentials
History (9)

purl	pkg:alpm/archlinux/live-media@2021.07.20-1

Next non-vulnerable version	2021.08.24-1
Latest non-vulnerable version	2021.08.24-1
Risk	3.4

Vulnerabilities affecting this package (3)

Vulnerability	Summary	Fixed by
VCID-qy4q-pmef-aaag Aliases: CVE-2021-38380	Live555 through 1.08 mishandles huge requests for the same MP3 stream, leading to recursion and s stack-based buffer over-read. An attacker can leverage this to launch a DoS attack.	2021.08.09-1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-tm9x-vzqu-aaan Aliases: CVE-2021-38382	Live555 through 1.08 does not handle Matroska and Ogg files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash.	2021.08.09-1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-z1jv-s4je-aaaa Aliases: CVE-2021-38381	Live555 through 1.08 does not handle MPEG-1 or 2 files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash.	2021.08.09-1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:30.460449+00:00	Arch Linux Importer	Affected by	VCID-qy4q-pmef-aaag	https://security.archlinux.org/AVG-2276	36.0.0
2025-03-28T07:46:30.441937+00:00	Arch Linux Importer	Affected by	VCID-z1jv-s4je-aaaa	https://security.archlinux.org/AVG-2276	36.0.0
2025-03-28T07:46:30.423321+00:00	Arch Linux Importer	Affected by	VCID-tm9x-vzqu-aaan	https://security.archlinux.org/AVG-2276	36.0.0
2024-09-18T02:01:47.860621+00:00	Arch Linux Importer	Affected by	VCID-qy4q-pmef-aaag	https://security.archlinux.org/AVG-2276	34.0.1
2024-09-18T02:01:47.841276+00:00	Arch Linux Importer	Affected by	VCID-z1jv-s4je-aaaa	https://security.archlinux.org/AVG-2276	34.0.1
2024-09-18T02:01:47.821769+00:00	Arch Linux Importer	Affected by	VCID-tm9x-vzqu-aaan	https://security.archlinux.org/AVG-2276	34.0.1
2024-01-03T22:27:53.084613+00:00	Arch Linux Importer	Affected by	VCID-qy4q-pmef-aaag	https://security.archlinux.org/AVG-2276	34.0.0rc1
2024-01-03T22:27:53.065251+00:00	Arch Linux Importer	Affected by	VCID-z1jv-s4je-aaaa	https://security.archlinux.org/AVG-2276	34.0.0rc1
2024-01-03T22:27:53.046167+00:00	Arch Linux Importer	Affected by	VCID-tm9x-vzqu-aaan	https://security.archlinux.org/AVG-2276	34.0.0rc1