CVE-2021-41396 Information

Description

Live555 through 1.08 does not handle socket connections properly. A huge number of incoming socket connections in a short time invokes the error-handling module in which a heap-based buffer overflow happens. An attacker can leverage this to launch a DoS attack.

Reference

http://lists.live555.com/pipermail/live-devel/2021-September/021994.html http://www.live555.com/liveMedia/public/changelog.txt