CVE-2021-38381

Name
CVE-2021-38381
Description
Live555 through 1.08 does not handle MPEG-1 or 2 files properly. Sending two successive RTSP SETUP commands for the same track causes a Use-After-Free and daemon crash.
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC http://lists.live555.com/pipermail/live-devel/2021-August/021961.html
MISC http://www.live555.com/liveMedia/public/changelog.txt#[2021.08.09]

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:live555:live555:*:*:*:*:*:*:*:* live555 >= None <= 1.08
cpe:2.3:a:live555:live555:*:*:*:*:*:*:*:* live555 >= None < 2021.08.09

Vulnerable and fixed packages

Source package Branch Version Maintainer Status