CVE-2021-38380 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Low
Remote	No
Type	Denial of service
Description	live-media before version2021.08.04 mishandles huge requests for the same MP3 stream, leading to recursion and a stack-based buffer over-read. An attacker can leverage this to launch a denial of service attack.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-2276	live-media	2021.07.20-1	2021.08.09-1	Medium	Fixed

References
http://lists.live555.com/pipermail/live-devel/2021-August/021954.html http://www.live555.com/liveMedia/public/changelog.txt