Please read this before reporting a bug:
https://wiki.archlinux.org/index.php/Reporting_Bug_Guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/index.php/Reporting_Bug_Guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#69316 - [live-media] [Security] arbitrary code execution (CVE-2020-24027)
Attached to Project:
Arch Linux
Opened by Jonas Witschel (diabonas) - Wednesday, 13 January 2021, 21:26 GMT
Opened by Jonas Witschel (diabonas) - Wednesday, 13 January 2021, 21:26 GMT
|
DetailsSummary
======= The package live-media is vulnerable to arbitrary code execution via CVE-2020-24027. Guidance ======== Upgrading to any version >= 2020.07.09 (currently the latest version is 2021.01.13) fixes the issue. References ========== https://security.archlinux.org/AVG-1448 http://lists.live555.com/pipermail/live-devel/2020-July/021662.html http://lists.live555.com/pipermail/live-devel/2020-July/021663.html |
This task depends upon