4 matches found
Asterisk PJSIP Invalid Media Attribute Denial Of Service (CVE-2018-1000099)
A denial-of-service vulnerability exists in Asterisk PJSIP. The vulnerability is due to improper validation of SDP Media Attributes. Successful exploitation can result in denial-of-service conditions...
Debian DSA-4170-1 : pjproject - security update
Multiple vulnerabilities have been discovered in the PJSIP/PJProject multimedia communication which may result in denial of service during the processing of SIP and SDP messages and ioqueue keys. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracte...
[SECURITY] [DSA 4170-1] pjproject security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4170-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 09, 2018 https://www.debian.org/security/faq -...
CVE-2018-1000099
CVE-2018-1000099 affects Teluu PJSIP up to version 2.7.1, where a null/uninitialized pointer vulnerability in pjmedia SDP parsing can crash a system. Exploitation is tied to processing specially crafted SDP messages; the issue is stated to be fixed in PJSIP 2.7.2. Connected advisories reference D...