-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 14 Mar 2019 09:25:20 +0100 Source: liblivemedia Binary: liblivemedia-dev libbasicusageenvironment1 libgroupsock8 liblivemedia57 libusageenvironment3 livemedia-utils Architecture: armhf Version: 2016.11.28-1+deb9u2 Distribution: stretch-security Urgency: high Maintainer: armel Build Daemon (hartmann) Changed-By: Hugo Lefeuvre Description: libbasicusageenvironment1 - multimedia RTSP streaming library (BasicUsageEnvironment class) libgroupsock8 - multimedia RTSP streaming library (network interfaces and sockets liblivemedia-dev - multimedia RTSP streaming library (development files) liblivemedia57 - multimedia RTSP streaming library libusageenvironment3 - multimedia RTSP streaming library (UsageEnvironment classes) livemedia-utils - multimedia RTSP streaming tools Changes: liblivemedia (2016.11.28-1+deb9u2) stretch-security; urgency=high . * Non-maintainer upload by the Security Team. * CVE-2019-6256: denial of service when processing get and post with identical x-session-cookie within the same tcp session. * CVE-2019-7314: use-after-free during RTSP stream termination. * CVE-2019-9215: malformed headers lead to invalid memory access in the parseAuthorizationHeader function. Checksums-Sha1: 1adf0798aa339be9f9f2550f51674786b637d45d 41908 libbasicusageenvironment1-dbgsym_2016.11.28-1+deb9u2_armhf.deb 10d596c1d95dc0337cb701a2afb920cd78fd961f 19872 libbasicusageenvironment1_2016.11.28-1+deb9u2_armhf.deb 61bc73dea1f1c6f76d659641433ba6b2b6343891 62604 libgroupsock8-dbgsym_2016.11.28-1+deb9u2_armhf.deb 4529e54470c065279cad1e16e1f57d15d68c33a2 24886 libgroupsock8_2016.11.28-1+deb9u2_armhf.deb 2c2b28e68d6719f349be0730c3259ce26415533e 164704 liblivemedia-dev_2016.11.28-1+deb9u2_armhf.deb 0175178293765989aba089563c1ed7c39d168d95 922282 liblivemedia57-dbgsym_2016.11.28-1+deb9u2_armhf.deb 6ba8d24fe15b3658e3a0ab10b0dd6ebabc88d5c9 268504 liblivemedia57_2016.11.28-1+deb9u2_armhf.deb 9e77dcba512311410c64f078aa0a3a9b7febb96d 8658 liblivemedia_2016.11.28-1+deb9u2_armhf.buildinfo 388dc990ec04f158fecbdf0e75d32fd6c0d32829 9920 libusageenvironment3-dbgsym_2016.11.28-1+deb9u2_armhf.deb a88a22da5065dcebfdac5238ce4175cc2df3efa1 12318 libusageenvironment3_2016.11.28-1+deb9u2_armhf.deb 1d00d4c25a00b0ad47e05855418b672cef27a51d 275756 livemedia-utils-dbgsym_2016.11.28-1+deb9u2_armhf.deb 889c96c741d3b81559350448e917e137b622e9da 73658 livemedia-utils_2016.11.28-1+deb9u2_armhf.deb Checksums-Sha256: e6c9e2344996ce47d8f93fc25055f62628e5ed5ae253831a93d3983cb799451c 41908 libbasicusageenvironment1-dbgsym_2016.11.28-1+deb9u2_armhf.deb b8310401db50e4d00092b5cbf0859cc186817da66d34a80244f6bfda18844298 19872 libbasicusageenvironment1_2016.11.28-1+deb9u2_armhf.deb 5a65b54563a23b4fe3ac4b7b8f2f7ad6077ddab2bc5ac06d6e16190e13dc2935 62604 libgroupsock8-dbgsym_2016.11.28-1+deb9u2_armhf.deb b0a651ed0eb845f2d89a1f19d4f3b2e60bf9017cfa71846fb507af4a4c5fc24c 24886 libgroupsock8_2016.11.28-1+deb9u2_armhf.deb c7bba131aa24d78984a4ad265df367a1128ca4e9fb5409be64f4aeb1f292a913 164704 liblivemedia-dev_2016.11.28-1+deb9u2_armhf.deb 687ce410f00961b7759b053262ba9eed7aed82947f8e049aba910e0a91ac3789 922282 liblivemedia57-dbgsym_2016.11.28-1+deb9u2_armhf.deb bb68616965dc42954f1476b8fac4d53893f191f2f59f549ee05e34f8ebac20d0 268504 liblivemedia57_2016.11.28-1+deb9u2_armhf.deb d7500bd4a978b61f7b3cb2d5880823c4095fc126d9cb0d5cb5419538ea5b7a7a 8658 liblivemedia_2016.11.28-1+deb9u2_armhf.buildinfo def13903313d35820910b07d0b6d0645512a2c52249439d428d61834a3925d2f 9920 libusageenvironment3-dbgsym_2016.11.28-1+deb9u2_armhf.deb 9ad81edcfb3097575c082104831f72c7282fbcc2e45ad8f418b6c196c206a72d 12318 libusageenvironment3_2016.11.28-1+deb9u2_armhf.deb 69e225351bd00ae25136a179e770d019938329a69ae1523b7dfb03409785c54a 275756 livemedia-utils-dbgsym_2016.11.28-1+deb9u2_armhf.deb a6a14c152a73977b7d694fa21962b7e59b537cd79e3dedc06b407fa1cc48a7a4 73658 livemedia-utils_2016.11.28-1+deb9u2_armhf.deb Files: c2411a0f4b374459f3b46b99fa0333d8 41908 debug extra libbasicusageenvironment1-dbgsym_2016.11.28-1+deb9u2_armhf.deb 6c93552033c9db3b2be92b381737fe80 19872 libs optional libbasicusageenvironment1_2016.11.28-1+deb9u2_armhf.deb 1ee4b02e3061958e020b9a7c187d5eed 62604 debug extra libgroupsock8-dbgsym_2016.11.28-1+deb9u2_armhf.deb 6d6824f56c8193bb4db63a77b09d0b62 24886 libs optional libgroupsock8_2016.11.28-1+deb9u2_armhf.deb 79ecc7d9319216398f94ba7aaebc71f5 164704 libdevel optional liblivemedia-dev_2016.11.28-1+deb9u2_armhf.deb aec6244d3001fd2c50dd6f89b45bc17d 922282 debug extra liblivemedia57-dbgsym_2016.11.28-1+deb9u2_armhf.deb 85f29b0c2952a5128b441a73223d166a 268504 libs optional liblivemedia57_2016.11.28-1+deb9u2_armhf.deb 650cb449d872781752f9fd1380a6e422 8658 libs optional liblivemedia_2016.11.28-1+deb9u2_armhf.buildinfo b1827f0bd73b0e1d0a1348e6d0efedb0 9920 debug extra libusageenvironment3-dbgsym_2016.11.28-1+deb9u2_armhf.deb 09e7106d2f2393f92a9cd921b46ab74b 12318 libs optional libusageenvironment3_2016.11.28-1+deb9u2_armhf.deb bb0534fb596f39cb7dcd4e92ab36168a 275756 debug extra livemedia-utils-dbgsym_2016.11.28-1+deb9u2_armhf.deb d8b0ce7cf9ff45395ab555826d2610ec 73658 net optional livemedia-utils_2016.11.28-1+deb9u2_armhf.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEkB4//+Pw3x+4tETk+7S1oiGE2s8FAlyLtRoACgkQ+7S1oiGE 2s/PWg//f1QRg4PUYd04YM/Gi83/xKfFYX/8dXVHqKFgf/FU130LpgkXu0gEL+/k h9Kp1oenvMpLFpGnW7aiaNi39SvqYT9c2TXH/Ilej14pv4uAFU5IM+YS3IzWf5h/ I3e2PYjWsRF9zu8j9NTbwToaFzkFVG8cdmCcllvEuJa2M0lPapHzb5ZUE2KsAoYi h4L+/OlgKNC3UjcfSaNNhzqPz0UlimaA0s+FWSezuuSdGpz4xAMHrnkfaonSN7la RoqsT0GZ2iM6F9RWWixt/VZBB4kUJB/L+ohFt4iS169/B5UUPfrYrpJH4mf/EHBt lz3/OJ93D1v6cdCymutj8rNWbE2zq/BwAzV+YyhcY3ho0kTF3rfm2zwOI3gtMzTk lgrWerDutd1FfJE/rM9GlDzeoOf6aL+47NP9y2nllse5H89TEIKZK6PCKVNd2pCu wqO1qZb2KZpVK21uEOP1DdTWUaS9A4XRzHXLeOw4Bspbqe+sc2KOMQHSQg9/cfoh 5abeHH/JqUndU/W/Mi+lDNvoFCUNF8wPI2f607tqtKZkyIGdFdSHOTu4IZL8v3Fi D7MDe0eg0hud9uFLkb9EUQoWN7XQ1HKGzp2wJwDYaQUGndKWEZXhCPz/h4I6DOef tbTERE1EVKeb76OMgf4GQSJDBHwBvPvWgwQopwxVuC6JcFnH9aI= =tyME -----END PGP SIGNATURE-----