CVE-2021-38381

CVE-2021-38381

EPSS 1.2%

Live555 through 1.08 does not handle MPEG-1 or 2 files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://lists.live555.com/pipermail/live-devel/2021-August/021961.html http://www.live555.com/liveMedia/public/changelog.txt#%5B2021.08.09%5D