VulnerableCode Package Details - pkg:deb/debian/liblivemedia@2014.01.13-1

Search for packages

Package details: pkg:deb/debian/liblivemedia@2014.01.13-1

Essentials
History (42)

purl	pkg:deb/debian/liblivemedia@2014.01.13-1

Next non-vulnerable version	2018.11.26-1.1
Latest non-vulnerable version	2018.11.26-1.1
Risk	4.5

Vulnerabilities affecting this package (4)

Vulnerability	Summary	Fixed by
VCID-5t39-b1n3-aaap Aliases: CVE-2019-9215	In Live555 before 2019.02.27, malformed headers lead to invalid memory access in the parseAuthorizationHeader function.	2016.11.28-1+deb9u2 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2018.11.26-1.1 Affected by 0 other vulnerabilities.
VCID-avxa-q6kw-aaad Aliases: CVE-2019-7314	liblivemedia in Live555 before 2019.02.03 mishandles the termination of an RTSP stream after RTP/RTCP-over-RTSP has been set up, which could lead to a Use-After-Free error that causes the RTSP server to crash (Segmentation fault) or possibly have unspecified other impact.	2016.11.28-1+deb9u2 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2018.11.26-1.1 Affected by 0 other vulnerabilities.
VCID-uvzz-kxkn-aaag Aliases: CVE-2018-4013	An exploitable code execution vulnerability exists in the HTTP packet-parsing functionality of the LIVE555 RTSP server library version 0.92. A specially crafted packet can cause a stack-based buffer overflow, resulting in code execution. An attacker can send a packet to trigger this vulnerability.	2016.11.28-1+deb9u2 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2018.11.26-1.1 Affected by 0 other vulnerabilities.
VCID-w1bw-vy7z-aaaa Aliases: CVE-2019-6256	A Denial of Service issue was discovered in the LIVE555 Streaming Media libraries as used in Live555 Media Server 0.93. It can cause an RTSPServer crash in handleHTTPCmd_TunnelingPOST, when RTSP-over-HTTP tunneling is supported, via x-sessioncookie HTTP headers in a GET request and a POST request within the same TCP session. This occurs because of a call to an incorrect virtual function pointer in the readSocket function in GroupsockHelper.cpp.	2016.11.28-1+deb9u2 Affected by 4 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2018.11.26-1.1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-442h-secy-aaaf	The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2011.08.13 through 2013.11.25, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a (1) space or (2) tab character at the beginning of an RTSP message, which triggers an integer underflow, infinite loop, and buffer overflow.	CVE-2013-6933

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-21T16:13:26.878005+00:00	Debian Oval Importer	Fixing	VCID-442h-secy-aaaf	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T15:10:21.854629+00:00	Debian Oval Importer	Affected by	VCID-5t39-b1n3-aaap	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T14:35:08.478175+00:00	Debian Oval Importer	Affected by	VCID-w1bw-vy7z-aaaa	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T13:41:13.259126+00:00	Debian Oval Importer	Affected by	VCID-uvzz-kxkn-aaag	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T13:41:01.971715+00:00	Debian Oval Importer	Affected by	VCID-avxa-q6kw-aaad	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.3
2025-06-21T10:58:19.506958+00:00	Debian Oval Importer	Affected by	VCID-w1bw-vy7z-aaaa	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.1.3
2025-06-21T10:53:31.091507+00:00	Debian Oval Importer	Affected by	VCID-5t39-b1n3-aaap	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.1.3
2025-06-21T10:50:18.549754+00:00	Debian Oval Importer	Affected by	VCID-uvzz-kxkn-aaag	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.1.3
2025-06-21T10:42:40.575034+00:00	Debian Oval Importer	Affected by	VCID-avxa-q6kw-aaad	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.1.3
2025-06-20T23:27:30.995749+00:00	Debian Oval Importer	Fixing	VCID-442h-secy-aaaf	None	36.1.3
2025-06-20T22:11:45.502713+00:00	Debian Oval Importer	Affected by	VCID-avxa-q6kw-aaad	None	36.1.3
2025-06-20T21:35:31.579050+00:00	Debian Oval Importer	Affected by	VCID-5t39-b1n3-aaap	None	36.1.3
2025-06-20T20:03:49.381916+00:00	Debian Oval Importer	Affected by	VCID-uvzz-kxkn-aaag	None	36.1.3
2025-06-20T19:56:12.058009+00:00	Debian Oval Importer	Affected by	VCID-w1bw-vy7z-aaaa	None	36.1.3
2025-06-08T09:01:10.141760+00:00	Debian Oval Importer	Fixing	VCID-442h-secy-aaaf	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T08:04:00.436653+00:00	Debian Oval Importer	Affected by	VCID-5t39-b1n3-aaap	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T07:28:13.954176+00:00	Debian Oval Importer	Affected by	VCID-w1bw-vy7z-aaaa	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T06:35:27.734881+00:00	Debian Oval Importer	Affected by	VCID-uvzz-kxkn-aaag	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T06:35:16.351106+00:00	Debian Oval Importer	Affected by	VCID-avxa-q6kw-aaad	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.1.0
2025-06-08T04:31:10.445826+00:00	Debian Oval Importer	Affected by	VCID-w1bw-vy7z-aaaa	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.1.0
2025-06-08T04:28:14.972143+00:00	Debian Oval Importer	Affected by	VCID-5t39-b1n3-aaap	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.1.0
2025-06-08T04:26:03.304987+00:00	Debian Oval Importer	Affected by	VCID-uvzz-kxkn-aaag	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.1.0
2025-06-08T04:21:45.830141+00:00	Debian Oval Importer	Affected by	VCID-avxa-q6kw-aaad	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.1.0
2025-06-07T16:50:26.367867+00:00	Debian Oval Importer	Fixing	VCID-442h-secy-aaaf	None	36.1.0
2025-06-07T15:35:47.502532+00:00	Debian Oval Importer	Affected by	VCID-avxa-q6kw-aaad	None	36.1.0
2025-06-07T14:58:07.134124+00:00	Debian Oval Importer	Affected by	VCID-5t39-b1n3-aaap	None	36.1.0
2025-06-07T13:51:23.155274+00:00	Debian Oval Importer	Affected by	VCID-uvzz-kxkn-aaag	None	36.1.0
2025-06-07T13:46:28.609949+00:00	Debian Oval Importer	Affected by	VCID-w1bw-vy7z-aaaa	None	36.1.0
2025-04-08T07:32:51.560759+00:00	Debian Oval Importer	Fixing	VCID-442h-secy-aaaf	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T06:36:09.997354+00:00	Debian Oval Importer	Affected by	VCID-5t39-b1n3-aaap	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T06:01:03.297085+00:00	Debian Oval Importer	Affected by	VCID-w1bw-vy7z-aaaa	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T05:07:46.608922+00:00	Debian Oval Importer	Affected by	VCID-uvzz-kxkn-aaag	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T05:07:35.052770+00:00	Debian Oval Importer	Affected by	VCID-avxa-q6kw-aaad	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	36.0.0
2025-04-08T03:01:31.948577+00:00	Debian Oval Importer	Affected by	VCID-w1bw-vy7z-aaaa	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.0.0
2025-04-08T02:58:25.082082+00:00	Debian Oval Importer	Affected by	VCID-5t39-b1n3-aaap	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.0.0
2025-04-08T02:56:03.223899+00:00	Debian Oval Importer	Affected by	VCID-uvzz-kxkn-aaag	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.0.0
2025-04-08T02:51:22.985330+00:00	Debian Oval Importer	Affected by	VCID-avxa-q6kw-aaad	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	36.0.0
2025-04-07T15:23:12.203189+00:00	Debian Oval Importer	Fixing	VCID-442h-secy-aaaf	None	36.0.0
2025-04-07T14:06:47.323863+00:00	Debian Oval Importer	Affected by	VCID-avxa-q6kw-aaad	None	36.0.0
2025-04-07T13:30:01.697611+00:00	Debian Oval Importer	Affected by	VCID-5t39-b1n3-aaap	None	36.0.0
2025-04-07T12:26:17.984671+00:00	Debian Oval Importer	Affected by	VCID-uvzz-kxkn-aaag	None	36.0.0
2025-04-07T12:21:38.004625+00:00	Debian Oval Importer	Affected by	VCID-w1bw-vy7z-aaaa	None	36.0.0