-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 14 Mar 2019 09:25:20 +0100 Source: liblivemedia Binary: liblivemedia-dev libbasicusageenvironment1 libgroupsock8 liblivemedia57 libusageenvironment3 livemedia-utils Architecture: armel Version: 2016.11.28-1+deb9u2 Distribution: stretch-security Urgency: high Maintainer: armel Build Daemon (arnold) Changed-By: Hugo Lefeuvre Description: libbasicusageenvironment1 - multimedia RTSP streaming library (BasicUsageEnvironment class) libgroupsock8 - multimedia RTSP streaming library (network interfaces and sockets liblivemedia-dev - multimedia RTSP streaming library (development files) liblivemedia57 - multimedia RTSP streaming library libusageenvironment3 - multimedia RTSP streaming library (UsageEnvironment classes) livemedia-utils - multimedia RTSP streaming tools Changes: liblivemedia (2016.11.28-1+deb9u2) stretch-security; urgency=high . * Non-maintainer upload by the Security Team. * CVE-2019-6256: denial of service when processing get and post with identical x-session-cookie within the same tcp session. * CVE-2019-7314: use-after-free during RTSP stream termination. * CVE-2019-9215: malformed headers lead to invalid memory access in the parseAuthorizationHeader function. Checksums-Sha1: 655d1dfc78029d6aeecfd126c5138c2d230f1419 41980 libbasicusageenvironment1-dbgsym_2016.11.28-1+deb9u2_armel.deb 47ee306b441a8cc2e6ff83952ed2e3d20002e676 19888 libbasicusageenvironment1_2016.11.28-1+deb9u2_armel.deb 3d8cc211494c20a4abb67d185d546444afc87711 63460 libgroupsock8-dbgsym_2016.11.28-1+deb9u2_armel.deb fdadf774823cd8257dab4ec7442d3a7c16b5ce13 25110 libgroupsock8_2016.11.28-1+deb9u2_armel.deb 68e7bdb5f4fc23f9cb530cd2b7dc83b5c3b9bba1 164702 liblivemedia-dev_2016.11.28-1+deb9u2_armel.deb 0217a7cdb6c78276ed8a192e65bc182f57a8ee32 922894 liblivemedia57-dbgsym_2016.11.28-1+deb9u2_armel.deb 629eec6324eeb154315a8cc53a3c20fc30e9855d 265630 liblivemedia57_2016.11.28-1+deb9u2_armel.deb f32034e9a258b7345dbc13a901865d1e902581af 8661 liblivemedia_2016.11.28-1+deb9u2_armel.buildinfo d54c0f578b604e555db559a0ed029c7d713d7dd7 10000 libusageenvironment3-dbgsym_2016.11.28-1+deb9u2_armel.deb 62ff65a6745591239a9729da171c13524c573731 12344 libusageenvironment3_2016.11.28-1+deb9u2_armel.deb e2dd4284ad20acfe5a052fecb33740afdcd52eac 274934 livemedia-utils-dbgsym_2016.11.28-1+deb9u2_armel.deb 80d9d90d274f90c6636b058d6259c9512a5a0ffa 73816 livemedia-utils_2016.11.28-1+deb9u2_armel.deb Checksums-Sha256: 2b8820673781fd35c791109e09c13cd1549aa79f9d3741cd6822872aebab8276 41980 libbasicusageenvironment1-dbgsym_2016.11.28-1+deb9u2_armel.deb 893442b408037be8f7b1b187528ce6bed364a65f7f381fe5e5a2f559fc3ce617 19888 libbasicusageenvironment1_2016.11.28-1+deb9u2_armel.deb fb8758f36ff0c84ddab8ee50aa8a1dc265a97419b6c7f62cde1300bed054f420 63460 libgroupsock8-dbgsym_2016.11.28-1+deb9u2_armel.deb fe4ac7ca7754d002b2483d09893184e86383c68d3babf76fe69b1bae1ee9b1d9 25110 libgroupsock8_2016.11.28-1+deb9u2_armel.deb fba24bf27850fe99fcf837e28da9e08691cc927bcc9f164348b811a2e217690e 164702 liblivemedia-dev_2016.11.28-1+deb9u2_armel.deb 093202fa3e3952f0d499115efeeccb3fddb46b352c76a1688007a18c64562035 922894 liblivemedia57-dbgsym_2016.11.28-1+deb9u2_armel.deb 05142561c0baec7186531cae761bec8215ed492125d9e3960aecb7b406659b49 265630 liblivemedia57_2016.11.28-1+deb9u2_armel.deb 7951a3105b56c634e8a5e8da1633e85e99a9ce5322852999d8363a86291e70ff 8661 liblivemedia_2016.11.28-1+deb9u2_armel.buildinfo 4e2580acf1ed9f77b99066396be7d7eb007b38c31a3ec49b0cf5f35335474223 10000 libusageenvironment3-dbgsym_2016.11.28-1+deb9u2_armel.deb afae16252a7cf65d93f369e445ab6dd6570d352fd4d340f2c03f680e97be300a 12344 libusageenvironment3_2016.11.28-1+deb9u2_armel.deb 971f598c590497b490a540ced3af60baa1ae1247e25fa309884e9cfa873c6d9c 274934 livemedia-utils-dbgsym_2016.11.28-1+deb9u2_armel.deb 5346b77e1d8dd63a9fbd97ecc0472941154e12cac16a18fa4ac5cbb29a7147de 73816 livemedia-utils_2016.11.28-1+deb9u2_armel.deb Files: b9f25e917c67844d023f6cac6a89e435 41980 debug extra libbasicusageenvironment1-dbgsym_2016.11.28-1+deb9u2_armel.deb 131494eabf1822774072d398bf5dc545 19888 libs optional libbasicusageenvironment1_2016.11.28-1+deb9u2_armel.deb 50e420c0bf97ad219f278a9c88f1f3f1 63460 debug extra libgroupsock8-dbgsym_2016.11.28-1+deb9u2_armel.deb 994cee172f3c8fd11cd1e5d53060bc71 25110 libs optional libgroupsock8_2016.11.28-1+deb9u2_armel.deb ba77fab5e6f1aaadc5704db8dae11fe1 164702 libdevel optional liblivemedia-dev_2016.11.28-1+deb9u2_armel.deb 93cedadcec8fb4cd5a97952417f9a3ec 922894 debug extra liblivemedia57-dbgsym_2016.11.28-1+deb9u2_armel.deb a509dd277f52ca8192f0186f45185e46 265630 libs optional liblivemedia57_2016.11.28-1+deb9u2_armel.deb 45c2b877f9362a63be6e77822affc483 8661 libs optional liblivemedia_2016.11.28-1+deb9u2_armel.buildinfo 23e015b3416f29bb1bc9869b256ad92e 10000 debug extra libusageenvironment3-dbgsym_2016.11.28-1+deb9u2_armel.deb 711e0a03d4f549caa091431133de7317 12344 libs optional libusageenvironment3_2016.11.28-1+deb9u2_armel.deb 81a2741cf34ed2409f5959f3b058f02c 274934 debug extra livemedia-utils-dbgsym_2016.11.28-1+deb9u2_armel.deb a9b71da05052af5bcbd1148d9ccc9423 73816 net optional livemedia-utils_2016.11.28-1+deb9u2_armel.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEi+3ipo5xwNhU7nlIwHgeOyZX6UIFAlyLtJsACgkQwHgeOyZX 6ULIlg//a2yJV+ElMdSGvz+jCWsBTKhWQnZTFFuL1ATFef/HB51qLCO0nzH5mXiB TwiwxhOWKYEdAfaqL5T6NuL1jw9mKfM7772oRS8cRkvHq1KJRUs0+5wYYCI/EPV1 0n/DBgIRVRn02uyaSomfrWbfpo5KpyW/7Lk2ls7NmoQcXl7Ifyt4BXBdq+X+jPtI 6OtKTE1KgbUQBtzVLdjh4cbCOUN5IfZEqsWcMGg2WqaBfb8T9VRqB9CHHRYDl8x+ f/hoU7orFOLvL0NS4mG+qR59ghNxtwK2SXmvoDEhpIOPHbYQmwf9UgWMrnBKjuRT ar0YWPpLPKWx1/wXOxACljm3SI/osmB8t6ebuCAApPqjie3jxKqyKxLYBgVKmA4c JckIlMYqOEFexcZnMap5NupKV9NQOsivBsM4wBtlaIxt4G6QRKko5BonEaUL7qcw wF5q9TMr8+y4Z4KGZCK+FOshFHQ0U75IJKpkzh975bkuKmgIdq4uOernwmploWKe 4XfWXxFUXcWXRuAiVfmdtN9e/glglYEaf5XLfpFZ90Cy3BnuV+97hx1G+WQTeRiJ Uxl1X3LW/v7dBakyOBTGV7dgmmkOxUQvGOjvdx8eoJk0ysn61mkN93VUg0r6pwwg R1SMqJl5D/i7a3CmdFeD68SUd2LFVr/JTcz0EVuD+oh1pEIdn0I= =+OQy -----END PGP SIGNATURE-----