CVE-2013-6934

Name	CVE-2013-6934
Description	The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2013.11.26, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a space character at the beginning of an RTSP message, which triggers an integer underflow, infinite loop, and buffer overflow. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-6933.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SuSE, Mageia, GitHub code/issues, web search, more)
NVD severity	high (attack range: remote)

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
liblivemedia (PTS)	wheezy, wheezy (security)	2012.05.17-1+wheezy1	fixed
	jessie	2014.01.13-1	fixed
	stretch	2016.11.28-1	fixed
	buster, sid	2017.09.12-1	fixed
mplayer (PTS)	wheezy	2:1.0~rc4.dfsg1+svn34540-1+deb7u1	fixed
	wheezy (security)	2:1.0~rc4.dfsg1+svn34540-1+deb7u2	fixed
	buster, sid, stretch	2:1.3.0-6	fixed
mplayer2 (PTS)	wheezy	2.0-554-gf63dbad-1	fixed
	wheezy (security)	2.0-554-gf63dbad-1+deb7u1	fixed
	jessie	2.0-728-g2c378c7-4	fixed
vlc (PTS)	wheezy, wheezy (security)	2.0.3-5+deb7u2	fixed
	jessie (security), jessie	2.2.6-1~deb8u1	fixed
	stretch	2.2.6-1~deb9u1	fixed
	buster, sid	2.2.6-6	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version
liblivemedia	source	(unstable)	(not affected)
mplayer	source	(unstable)	(not affected)
mplayer2	source	(unstable)	(not affected)
vlc	source	(unstable)	(not affected)

Notes

- liblivemedia <not-affected> (incomplete patch never applied)
- vlc <not-affected> (never built against liblivemedia with incomplete patch)
- mplayer <not-affected> (never built against liblivemedia with incomplete patch)
- mplayer2 <not-affected> (b-d's on liblivemedia but doesn't actually build the support for it)