CVE-2021-38382

CVE-2021-38382

EPSS 1.2%

Live555 through 1.08 does not handle Matroska and Ogg files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://lists.live555.com/pipermail/live-devel/2021-August/021959.html http://www.live555.com/liveMedia/public/changelog.txt#%5B2021.08.06%5D