AVG-2306 log

Package	live-media
Status	Fixed
Severity	Medium
Type	multiple issues
Affected	2021.08.09-1
Fixed	2021.08.24-1
Current	2023.01.19-1 [extra]
Ticket	None
Created	Mon Aug 23 10:58:07 2021

Issue	Severity	Remote	Type	Description
CVE-2021-39283	Low	Yes	Denial of service	liveMedia/FramedSource.cpp in live-media before version 2021.08.13 allows an assertion failure and application exit via multiple SETUP and PLAY commands.
CVE-2021-39282	Medium	Yes	Information disclosure	live-media before version 2021.08.13 has a memory leak in AC3AudioStreamParser for AC3 files.

Issue

Severity

Remote

Type

Description

CVE-2021-39283

Low

Yes

Denial of service

liveMedia/FramedSource.cpp in live-media before version 2021.08.13 allows an assertion failure and application exit via multiple SETUP and PLAY commands.

CVE-2021-39282

Medium

Yes

Information disclosure

live-media before version 2021.08.13 has a memory leak in AC3AudioStreamParser for AC3 files.