Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2017-16875HistoryNov 17, 2017 - 4:29 p.m.
CVE-2017-16875
2017-11-1716:29:00
Debian Security Bug Tracker
security-tracker.debian.org
7
EPSS
0.003
Percentile
65.7%
An issue was discovered in Teluu pjproject (pjlib and pjlib-util) in PJSIP before 2.7.1. The ioqueue component may issue a double key unregistration after an attacker initiates a socket connection with specific settings and sequences. Such double key unregistration will trigger an integer overflow, which may cause ioqueue backends to reject future key registrations.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 9 | all | pjproject | < 2.5.5~dfsg-6+deb9u1 | pjproject_2.5.5~dfsg-6+deb9u1_all.deb |
Related
cvelist
cvelist
CVE-2017-16875
2017-11-17 16:00:00
prion
prion
Integer overflow
2017-11-17 16:29:00
osv
osv
CVE-2017-16875
2017-11-17 16:29:00
pjproject - security update
2018-04-09 00:00:00
ubuntucve
ubuntucve
CVE-2017-16875
2017-11-17 00:00:00
nvd
nvd
CVE-2017-16875
2017-11-17 16:29:00
cve
cve
CVE-2017-16875
2017-11-17 16:29:00
openvas
openvas
Debian: Security Advisory (DSA-4170-1)
2018-04-08 00:00:00
debian
debian
[SECURITY] [DSA 4170-1] pjproject security update
2018-04-09 21:00:25
nessus
nessus
Debian DSA-4170-1 : pjproject - security update
2018-04-10 00:00:00