CVE-2021-38382

CVE-2021-38382

EPSS 1.2%

Live555 through 1.08 does not handle Matroska and Ogg files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://lists.live555.com/pipermail/live-devel/2021-August/021959.html http://www.live555.com/liveMedia/public/changelog.txt#%5B2021.08.06%5D