Update Info


Security update for live555

Type: security
Severity: moderate
Issued: 2019-03-23
This update fixes two security issues in live555:

- CVE-2018-4013: Remote code execution vulnerability (bsc#1114779)
- CVE-2019-6256: Denial of Service issue with RTSP-over-HTTP tunneling via x-sessioncookie HTTP headers (boo#1121892)

This library is statically linked into VLC. However VLC is not affected because it only uses the live555 library to implement the RTSP client.



  • live555-2018.12.14-bp150.3.3.1