diff mbox series

[1/1] package/live555: security bump to version 2021.05.03

Message ID 20210514200826.2237923-1-fontaine.fabrice@gmail.com
State Accepted
Headers show
Series [1/1] package/live555: security bump to version 2021.05.03 | expand

Commit Message

Fabrice Fontaine May 14, 2021, 8:08 p.m. UTC 
Fix CVE-2021-28899: Vulnerability in the
AC3AudioFileServerMediaSubsession, ADTSAudioFileServerMediaSubsession,
and AMRAudioFileServerMediaSubsessionLive OnDemandServerMediaSubsession
subclasses in Networks LIVE555 Streaming Media before 2021.3.16.

http://live555.com/liveMedia/public/changelog.txt

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
---
 package/live555/live555.hash | 4 ++--
 package/live555/live555.mk   | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

Comments

Peter Korsgaard May 14, 2021, 8:59 p.m. UTC | #1 
>>>>> "Fabrice" == Fabrice Fontaine <fontaine.fabrice@gmail.com> writes:

 > Fix CVE-2021-28899: Vulnerability in the
 > AC3AudioFileServerMediaSubsession, ADTSAudioFileServerMediaSubsession,
 > and AMRAudioFileServerMediaSubsessionLive OnDemandServerMediaSubsession
 > subclasses in Networks LIVE555 Streaming Media before 2021.3.16.

 > http://live555.com/liveMedia/public/changelog.txt

 > Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>

Committed, thanks.
Peter Korsgaard May 17, 2021, 7:23 p.m. UTC | #2 
>>>>> "Fabrice" == Fabrice Fontaine <fontaine.fabrice@gmail.com> writes:

 > Fix CVE-2021-28899: Vulnerability in the
 > AC3AudioFileServerMediaSubsession, ADTSAudioFileServerMediaSubsession,
 > and AMRAudioFileServerMediaSubsessionLive OnDemandServerMediaSubsession
 > subclasses in Networks LIVE555 Streaming Media before 2021.3.16.

 > http://live555.com/liveMedia/public/changelog.txt

 > Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>

Committed to 2021.02.x, thanks.
diff mbox series

Patch

diff --git a/package/live555/live555.hash b/package/live555/live555.hash
index 5e65cacd7b..d4fa93d029 100644
--- a/package/live555/live555.hash
+++ b/package/live555/live555.hash
@@ -1,5 +1,5 @@ 
 # From http://www.live555.com/liveMedia/public/live555-latest-md5.txt
-md5  4645d2a0c865505c85b48af5317bcb4a  live.2020.08.19.tar.gz
+md5  3c1992b0e9b871bcad7491a3da541781  live.2021.05.03.tar.gz
 # Locally generated
-sha256  af3af7f2510b0b45f38892c232abca2cee2ab36a62503e7085b47ed2c3c2c537  live.2020.08.19.tar.gz
+sha256  ae73241f9cc4ab740d60737c0438d62a7635af3822de5d84acf275793de42029  live.2021.05.03.tar.gz
 sha256  da7eabb7bafdf7d3ae5e9f223aa5bdc1eece45ac569dc21b3b037520b4464768  COPYING.LESSER
diff --git a/package/live555/live555.mk b/package/live555/live555.mk
index 9a5c1c7c0d..effd4517cf 100644
--- a/package/live555/live555.mk
+++ b/package/live555/live555.mk
@@ -4,7 +4,7 @@ 
 #
 ################################################################################
 
-LIVE555_VERSION = 2020.08.19
+LIVE555_VERSION = 2021.05.03
 LIVE555_SOURCE = live.$(LIVE555_VERSION).tar.gz
 LIVE555_SITE = http://www.live555.com/liveMedia/public
 # There is a COPYING file with the GPL-3.0 license text, but none of