Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-47517HistoryDec 18, 2022 - 5:15 a.m.
CVE-2022-47517
2022-12-1805:15:00
Debian Security Bug Tracker
security-tracker.debian.org
11
libsofia-sip
denial of service
crafted udp message
buffer over-read
off-by-one error
drachtio-server
EPSS
0.007
Percentile
80.9%
An issue was discovered in the libsofia-sip fork in drachtio-server before 0.8.19. It allows remote attackers to cause a denial of service (daemon crash) via a crafted UDP message that causes a url_canonize2 heap-based buffer over-read because of an off-by-one error.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | sofia-sip | <= 1.12.11+20110422.1+1e14eea~dfsg-4 | sofia-sip_1.12.11+20110422.1+1e14eea~dfsg-4_all.deb |
| Debian | 11 | all | sofia-sip | <= 1.12.11+20110422.1-2.1 | sofia-sip_1.12.11+20110422.1-2.1_all.deb |
| Debian | 10 | all | sofia-sip | <= 1.12.11+20110422.1-2.1 | sofia-sip_1.12.11+20110422.1-2.1_all.deb |
| Debian | 999 | all | sofia-sip | <= 1.12.11+20110422.1+1e14eea~dfsg-4 | sofia-sip_1.12.11+20110422.1+1e14eea~dfsg-4_all.deb |
Related
osv
osv
CVE-2022-47517
2022-12-18 05:15:11
nvd
nvd
CVE-2022-47517
2022-12-18 05:15:11
cvelist
cvelist
CVE-2022-47517
2022-12-18 00:00:00
prion
prion
Heap overflow
2022-12-18 05:15:00
cve
cve
CVE-2022-47517
2022-12-18 05:15:11