Errata overview
Errata ID 335
Date 2018-11-28
Source package liblivemedia
Fixed in version 2016.11.28-1+deb9u1
This update addresses the following issue:
* An exploitable code execution vulnerability exists in the HTTP
  packet-parsing functionality of the LIVE555 RTSP server library version
  0.92. A specially crafted packet can cause a stack-based buffer overflow,
  resulting in code execution. An attacker can send a packet to trigger this
  vulnerability. (CVE-2018-4013)
Additional notes
CVE ID CVE-2018-4013
UCS Bug number #48202