Debian Package Tracker - liblivemedia

general

source: liblivemedia (main)
version: 2018.11.26-1.1
maintainer: Debian Multimedia Maintainers (archive) (DMD)
uploaders: Sebastian Ramacher [DMD] – Christophe Mutricy [DMD] – Sam Hocevar (Debian packages) [DMD] – Reinhard Tartler [DMD]
arch: any
std-ver: 4.2.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2014.01.13-1
o-o-sec: 2014.01.13-1+deb8u3
oldstable: 2016.11.28-1+deb9u2
old-sec: 2016.11.28-1+deb9u2
stable: 2018.11.26-1.1
testing: 2018.11.26-1.1
unstable: 2018.11.26-1.1
exp: 2019.02.27-1
NEW/experimental: 2019.08.28-1

versioned links

2014.01.13-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2014.01.13-1+deb8u3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2016.11.28-1+deb9u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2018.11.26-1.1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2019.02.27-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libbasicusageenvironment1
libgroupsock8
liblivemedia-dev
liblivemedia64
libusageenvironment3 (1 bugs: 0, 0, 1, 0)
livemedia-utils (1 bugs: 0, 0, 1, 0)

action needed

A new upstream version is available: 2019.08.28 high

A new upstream version 2019.08.28 is available, you should consider packaging it.

Created: 2019-04-21 Last update: 2019-09-20 01:01

2 security issues in sid high

There are 2 open security issues in sid.

2 important issues:

CVE-2019-7733: In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove.
CVE-2019-15232: Live555 before 2019.08.16 has a Use-After-Free because GenericMediaServer::createNewClientSessionWithId can generate the same client session ID in succession, which is mishandled by the MPEG1or2 and Matroska file demultiplexors.

Please fix them.

Created: 2019-02-04 Last update: 2019-09-01 03:36

2 security issues in bullseye high

There are 2 open security issues in bullseye.

2 important issues:

CVE-2019-7733: In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove.
CVE-2019-15232: Live555 before 2019.08.16 has a Use-After-Free because GenericMediaServer::createNewClientSessionWithId can generate the same client session ID in succession, which is mishandled by the MPEG1or2 and Matroska file demultiplexors.

Please fix them.

Created: 2019-07-07 Last update: 2019-09-01 03:36

1 bug tagged patch in the BTS normal

The BTS contains patches fixing 1 bug, consider including or untagging them.

Created: 2019-04-01 Last update: 2019-09-20 01:33

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 2019.08.28-1, distribution experimental) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit e34b32e4393864d21418fbecc18f08ac7963fd55
Author: Sebastian Ramacher <sramacher@debian.org>
Date:   Sun Sep 1 18:35:31 2019 +0200

    New upstream release

commit a7e2f239c881ff715e6c35052539a6531a8e0a41
Merge: e3a94bb 277ae55
Author: Sebastian Ramacher <sramacher@debian.org>
Date:   Sun Sep 1 18:32:57 2019 +0200

    Update upstream source from tag 'upstream/2019.08.28'
    
    Update to upstream version '2019.08.28'
    with Debian dir 49a05a99b786ac2c051e0379349c2a9c8e2e50a7

commit 277ae556c580fe23d32c527653675284911694a9
Author: Sebastian Ramacher <sramacher@debian.org>
Date:   Sun Sep 1 18:32:52 2019 +0200

    New upstream version 2019.08.28

Created: 2019-03-26 Last update: 2019-09-17 04:50

2 ignored security issues in stretch low

There are 2 open security issues in stretch.

2 issues skipped by the security teams:

CVE-2019-7733: In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove.
CVE-2019-15232: Live555 before 2019.08.16 has a Use-After-Free because GenericMediaServer::createNewClientSessionWithId can generate the same client session ID in succession, which is mishandled by the MPEG1or2 and Matroska file demultiplexors.

Please fix them.

Created: 2019-01-17 Last update: 2019-09-01 03:36

2 ignored security issues in jessie low

There are 2 open security issues in jessie.

2 issues skipped by the security teams:

CVE-2019-7733: In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove.
CVE-2019-15232: Live555 before 2019.08.16 has a Use-After-Free because GenericMediaServer::createNewClientSessionWithId can generate the same client session ID in succession, which is mishandled by the MPEG1or2 and Matroska file demultiplexors.

Please fix them.

Created: 2019-01-17 Last update: 2019-09-01 03:36

2 ignored security issues in buster low

There are 2 open security issues in buster.

2 issues skipped by the security teams:

CVE-2019-7733: In Live555 0.95, there is a buffer overflow via a large integer in a Content-Length HTTP header because handleRequestBytes has an unrestricted memmove.
CVE-2019-15232: Live555 before 2019.08.16 has a Use-After-Free because GenericMediaServer::createNewClientSessionWithId can generate the same client session ID in succession, which is mishandled by the MPEG1or2 and Matroska file demultiplexors.

Please fix them.

Created: 2019-02-04 Last update: 2019-09-01 03:36

Build log checks report 1 warning low

Build log checks report 1 warning

Created: 2017-10-26 Last update: 2017-10-26 07:22

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.4.0 instead of 4.2.1).

Created: 2018-12-23 Last update: 2019-07-08 20:07

testing migrations

This package will soon be part of the auto-liblivemedia transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.

news

[rss feed]

[2019-05-11] liblivemedia 2018.11.26-1.1 MIGRATED to testing (Debian testing watch)
[2019-05-06] Accepted liblivemedia 2018.11.26-1.1 (source amd64) into unstable (Hugo Lefeuvre)
[2019-03-29] Accepted liblivemedia 2016.11.28-1+deb9u2 (source amd64) into proposed-updates->stable-new, proposed-updates (Hugo Lefeuvre)
[2019-03-18] Accepted liblivemedia 2014.01.13-1+deb8u3 (source amd64) into oldstable (Hugo Lefeuvre)
[2019-03-17] Accepted liblivemedia 2016.11.28-1+deb9u2 (source amd64) into stable->embargoed, stable (Hugo Lefeuvre)
[2019-03-03] Accepted liblivemedia 2019.02.27-1 (source) into experimental (Sebastian Ramacher)
[2019-02-26] Accepted liblivemedia 2014.01.13-1+deb8u2 (source amd64) into oldstable (Hugo Lefeuvre)
[2019-02-04] Accepted liblivemedia 2019.02.03-1 (amd64 source) into experimental, experimental (Sebastian Ramacher)
[2018-12-04] liblivemedia 2018.11.26-1 MIGRATED to testing (Debian testing watch)
[2018-11-28] Accepted liblivemedia 2018.11.26-1 (source) into unstable (Sebastian Ramacher)
[2018-11-23] Accepted liblivemedia 2016.11.28-1+deb9u1 (source amd64) into proposed-updates->stable-new, proposed-updates (Hugo Lefeuvre)
[2018-11-23] Accepted liblivemedia 2016.11.28-1+deb9u1 (source amd64) into stable->embargoed, stable (Hugo Lefeuvre)
[2018-11-20] Accepted liblivemedia 2014.01.13-1+deb8u1 (source amd64) into oldstable (Hugo Lefeuvre)
[2018-10-23] liblivemedia 2018.10.17-1 MIGRATED to testing (Debian testing watch)
[2018-10-17] Accepted liblivemedia 2018.10.17-1 (source) into unstable (Sebastian Ramacher)
[2018-09-26] liblivemedia 2018.09.18-1 MIGRATED to testing (Debian testing watch)
[2018-09-20] Accepted liblivemedia 2018.09.18-1 (source) into unstable (Sebastian Ramacher)
[2018-09-16] Accepted liblivemedia 2018.09.10-1 (source) into unstable (Sebastian Ramacher)
[2018-09-12] liblivemedia 2018.09.06-1 MIGRATED to testing (Debian testing watch)
[2018-09-07] Accepted liblivemedia 2018.09.06-1 (amd64 source) into unstable, unstable (Sebastian Ramacher)
[2018-09-03] liblivemedia 2018.08.28a-1 MIGRATED to testing (Debian testing watch)
[2018-08-29] Accepted liblivemedia 2018.08.28a-1 (source) into unstable (Sebastian Ramacher)
[2018-08-28] Accepted liblivemedia 2018.08.27-2 (source) into unstable (Sebastian Ramacher)
[2018-08-28] Accepted liblivemedia 2018.08.27-1 (source) into unstable (Sebastian Ramacher)
[2018-08-20] liblivemedia 2018.08.05-1 MIGRATED to testing (Debian testing watch)
[2018-08-15] Accepted liblivemedia 2018.08.05-1 (source) into unstable (Sebastian Ramacher)
[2018-07-16] liblivemedia 2018.07.07-1 MIGRATED to testing (Debian testing watch)
[2018-07-16] liblivemedia 2018.07.07-1 MIGRATED to testing (Debian testing watch)
[2018-07-10] Accepted liblivemedia 2018.07.07-1 (source) into unstable (Sebastian Ramacher)
[2018-05-10] liblivemedia 2018.04.25-2 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 3
RC: 0
I&N: 1
M&W: 2
F&P: 0
patch: 1

links

homepage
lintian
buildd: logs, exp, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2018.11.26-1.1
2 bugs