Bug#924655: liblivemedia: CVE-2019-9215: invalid memory access in parseAuthorizationHeader

Hugo Lefeuvre Fri, 15 Mar 2019 07:27:55 -0700

Source: liblivemedia
Version: 2018.11.26-1
Severity: normal
Tags: security upstream


Hi,

The following vulnerability was published for liblivemedia.

CVE-2019-9215[0]: malformed headers lead to invalid memory access in
the parseAuthorizationHeader function.

I see this vulnerability was fixed in experimental via new upstream
release 2019.02.27-1. This is a fairly severe issue so we should
probably backport the patch to Buster as well.

regards,
Hugo

[0] https://security-tracker.debian.org/tracker/CVE-2019-9215

-- 
                Hugo Lefeuvre (hle)    |    www.owl.eu.com
RSA4096_ 360B 03B3 BF27 4F4D 7A3F D5E8 14AA 1EB8 A247 3DFD
ed25519_ 37B2 6D38 0B25 B8A2 6B9F 3A65 A36F 5357 5F2D DC4C

signature.asc
Description: PGP signature

Bug#924655: liblivemedia: CVE-2019-9215: invalid memory access in parseAuthorizationHeader

Reply via email to