[mythtv-commits] Ticket #5030: CVE-2007-6036 denial of service security bug in liveMedia
MythTV
mythtv at cvs.mythtv.org
Mon Mar 24 20:29:05 UTC 2008
#5030: CVE-2007-6036 denial of service security bug in liveMedia
---------------------------------------------+------------------------------
Reporter: Erik Hovland <erik at hovland.org> | Owner: ijr
Type: defect | Status: new
Priority: minor | Milestone: 0.21.1
Component: mythtv | Version: 0.21-fixes
Severity: medium | Mlocked: 0
---------------------------------------------+------------------------------
The liveMedia library has a bug in the RTSP code that makes it possible to
cause a denial of service in applications that use the library. This is
reported in [http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=CVE-2007-6036 CVE-2007-6036].
The latest version of liveMedia includes the fix. But that is probably way
too much churning for a stable branch. So I am including a much smaller
patch which fixes just the things associated to the security flaw.
--
Ticket URL: <http://svn.mythtv.org/trac/ticket/5030>
MythTV <http://www.mythtv.org/>
MythTV
More information about the mythtv-commits
mailing list