10 matches found
GLSA-202407-10 : Sofia-SIP: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202407-10 Sofia-SIP: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in Sofia-SIP. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding description block direct...
Fedora 38 : sofia-sip (2024-b9c02df30f)
The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-b9c02df30f advisory. Security fix for CVE-2023-32307 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
Ubuntu: Security Advisory (USN-6448-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : Sofia-SIP vulnerability (USN-6448-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.04 / 23.10 host has packages installed that are affected by a vulnerability as referenced in the USN-6448-1 advisory. Xu Biang discovered that Sofia-SIP did not properly manage memory when handling STUN packets. An attacker coul...
Updated sofia-sip packages fix security vulnerability
The OOB read and integer-overflow made by attacker may lead to crash, high consumption of memory or even other more serious consequences. CVE-2023-32307...
Debian DSA-5431-1 : sofia-sip - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5431 advisory. - Sofia-SIP is an open-source SIP User-Agent library, compliant with the IETF RFC3261 specification. Referring to GHSA-8599-x7rq-fr54, several other potential heap-over-fl...
[SECURITY] [DLA 3441-1] sofia-sip security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3441-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb June 02, 2023 https://wiki.debian.org/LTS -...
Debian dla-3441 : libsofia-sip-ua-dev - security update
The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3441 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3441-1 [email protected] https://www.debian.org/lts/security/...
CVE-2023-32307 heap-over-flow and integer-overflow in sofia-sip
Sofia-SIP is an open-source SIP User-Agent library, compliant with the IETF RFC3261 specification. Referring to GHSA-8599-x7rq-fr54, several other potential heap-over-flow and integer-overflow in stunparseattrerrorcode and stunparseattruint32 were found because the lack of attributes length check...
CVE-2023-32307 heap-over-flow and integer-overflow in sofia-sip
Sofia-SIP is an open-source SIP User-Agent library, compliant with the IETF RFC3261 specification. Referring to GHSA-8599-x7rq-fr54, several other potential heap-over-flow and integer-overflow in stunparseattrerrorcode and stunparseattruint32 were found because the lack of attributes length check...