Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2021-43301HistoryFeb 16, 2022 - 9:15 p.m.
CVE-2021-43301
2022-02-1621:15:00
Debian Security Bug Tracker
security-tracker.debian.org
25
0.006 Low
EPSS
Percentile
77.6%
Stack overflow in PJSUA API when calling pjsua_playlist_create. An attacker-controlled ‘file_names’ argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | asterisk | <Â 1:16.28.0~dfsg-0+deb11u1 | asterisk_1:16.28.0~dfsg-0+deb11u1_all.deb |
| Debian | 10 | all | asterisk | <Â 1:16.28.0~dfsg-0+deb10u1 | asterisk_1:16.28.0~dfsg-0+deb10u1_all.deb |
| Debian | 999 | all | asterisk | <Â 1:18.11.1~dfsg+~cs6.10.40431413-1 | asterisk_1:18.11.1~dfsg+~cs6.10.40431413-1_all.deb |
| Debian | 12 | all | ring | <Â 20230206.0~ds1-1 | ring_20230206.0~ds1-1_all.deb |
| Debian | 11 | all | ring | <=Â 20210112.2.b757bac~ds1-1 | ring_20210112.2.b757bac~ds1-1_all.deb |
| Debian | 10 | all | ring | <Â 20190215.1.f152c98~ds1-1+deb10u2 | ring_20190215.1.f152c98~ds1-1+deb10u2_all.deb |
| Debian | 999 | all | ring | <Â 20230206.0~ds1-1 | ring_20230206.0~ds1-1_all.deb |
| Debian | 13 | all | ring | <Â 20230206.0~ds1-1 | ring_20230206.0~ds1-1_all.deb |
Related
ubuntucve
ubuntucve
CVE-2021-43301
2022-02-16 00:00:00
veracode
veracode
Buffer Overflow
2022-03-12 16:23:42
cvelist
cvelist
CVE-2021-43301
2022-02-16 00:00:00
cnvd
cnvd
PJSUA API Buffer Overflow Vulnerability (CNVD-2022-14999)
2022-02-18 00:00:00
prion
prion
Stack overflow
2022-02-16 21:15:00
cve
cve
CVE-2021-43301
2022-02-16 21:15:00
alpinelinux
alpinelinux
CVE-2021-43301
2022-02-16 21:15:00
osv
osv
redos
redos
ROS-20220310-01
2022-03-10 00:00:00
thn
thn
Critical Bugs Reported in Popular Open Source PJSIP SIP and Media Stack
2022-03-02 07:10:00
nessus
nessus
Debian DLA-2962-1 : pjproject - LTS security update
2022-03-30 00:00:00
Ubuntu 18.04 ESM / 20.04 LTS / 23.04 : Ring vulnerabilities (USN-6422-1)
2023-10-09 00:00:00
Debian DLA-3194-1 : asterisk - LTS security update
2022-11-19 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-2962-1)
2022-03-29 00:00:00
Debian: Security Advisory (DLA-3194-1)
2022-11-18 00:00:00
Ubuntu: Security Advisory (USN-6422-1)
2023-10-10 00:00:00
debian
debian
[SECURITY] [DLA 2962-1] pjproject security update
2022-03-28 14:59:03
[SECURITY] [DLA 3194-1] asterisk security update
2022-11-17 11:35:54
[SECURITY] [DSA 5285-1] asterisk security update
2022-11-17 22:00:12
ubuntu
ubuntu
Ring vulnerabilities
2023-10-24 00:00:00
Ring vulnerabilities
2023-10-09 00:00:00