USN-4853-1: liveMedia vulnerabilities
15 March 2021
Several security issues were fixed in liveMedia.
Releases
Packages
- liblivemedia - multimedia RTSP streaming library
Details
It was discovered that liveMedia incorrectly handled certain network
packets. An attacker could possibly use this issue to execute arbitrary
code. (CVE-2018-4013)
It was discovered that liveMedia incorrectly handled certain network
sessions. An attacker could possibly use this issue to cause a denial of
service. (CVE-2019-6256)
It was discovered that liveMedia incorrectly handled certain RTSP
streamings. An attacker could possiby use this issue to cause a denial of
service or other unspecified impact. (CVE-2019-7314)
It was discovered that liveMedia incorrectly handled certain requests. An
attacker could possibly use this issue to obtain sensitive information.
(CVE-2019-9215)
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 18.04
-
liblivemedia62
-
2018.02.18-1ubuntu0.1~esm1
Available with Ubuntu Pro
Ubuntu 16.04
-
liblivemedia50
-
2016.02.09-1ubuntu0.1~esm1
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.