Lucene search
MitreCVELIST:CVE-2018-16657HistorySep 07, 2018 - 2:00 p.m.
CVE-2018-16657
2018-09-0714:00:00
mitre
www.cve.org
In Kamailio before 5.0.7 and 5.1.x before 5.1.4, a crafted SIP message with an invalid Via header causes a segmentation fault and crashes Kamailio. The reason is missing input validation in the crcitt_string_array core function for calculating a CRC hash for To tags. (An additional error is present in the check_via_address core function: this function also misses input validation.) This could result in denial of service and potentially the execution of arbitrary code.
Related
openvas
openvas
Debian: Security Advisory (DLA-1503-1)
2018-09-11 00:00:00
Debian: Security Advisory (DSA-4292-1)
2018-09-10 00:00:00
Kamailio < 5.0.7 & 5.1.x < 5.1.4 Multiple DoS Vulnerabilities
2018-04-03 00:00:00
debian
debian
[SECURITY] [DSA 4292-1] kamailio security update
2018-09-11 20:13:02
[SECURITY] [DSA 4292-1] kamailio security update
2018-09-11 20:13:02
[SECURITY] [DLA 1503-1] kamailio security update
2018-09-12 10:43:20
osv
osv
kamailio - security update
2018-09-12 00:00:00
kamailio - security update
2018-09-11 00:00:00
CVE-2018-16657
2018-09-07 14:29:03
nessus
nessus
Debian DSA-4292-1 : kamailio - security update
2018-09-12 00:00:00
Debian DLA-1503-1 : kamailio security update
2018-09-13 00:00:00
prion
prion
Input validation
2018-09-07 14:29:00
nvd
nvd
CVE-2018-16657
2018-09-07 14:29:03
cve
cve
CVE-2018-16657
2018-09-07 14:29:03
ubuntucve
ubuntucve
CVE-2018-16657
2018-09-07 00:00:00
debiancve
debiancve
CVE-2018-16657
2018-09-07 14:29:03
ubuntu
ubuntu
Kamailio vulnerabilities
2023-04-14 00:00:00