39 matches found
EUVD-2022-50277
Malicious code in bioql PyPI...
EUVD-2022-48754
Malicious code in bioql PyPI...
EUVD-2022-48339
Malicious code in bioql PyPI...
CVE-2022-47515
An issue was discovered in drachtio-server before 0.8.20. It allows remote attackers to cause a denial of service daemon crash via a long message in a TCP request that leads to std::lengtherror...
CVE-2022-45909
drachtio-server before 0.8.19 has a heap-based buffer over-read via a long Request-URI in an INVITE request...
Debian dla-3334 : libsofia-sip-ua-dev - security update
The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3334 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3334-1 [email protected] https://www.debian.org/lts/security/...
CVE-2022-47515
An issue was discovered in drachtio-server before 0.8.20. It allows remote attackers to cause a denial of service daemon crash via a long message in a TCP request that leads to std::lengtherror...
CVE-2022-47516
An issue was discovered in the libsofia-sip fork in drachtio-server before 0.8.20. It allows remote attackers to cause a denial of service daemon crash via a crafted UDP message that leads to a failure of the libsofia-sip-ua/tport/tport.c self assertion...
CVE-2022-47517
An issue was discovered in the libsofia-sip fork in drachtio-server before 0.8.19. It allows remote attackers to cause a denial of service daemon crash via a crafted UDP message that causes a urlcanonize2 heap-based buffer over-read because of an off-by-one error...
CVE-2022-47515
An issue was discovered in drachtio-server before 0.8.20. It allows remote attackers to cause a denial of service daemon crash via a long message in a TCP request that leads to std::lengtherror...
CVE-2022-47517
An issue was discovered in the libsofia-sip fork in drachtio-server before 0.8.19. It allows remote attackers to cause a denial of service daemon crash via a crafted UDP message that causes a urlcanonize2 heap-based buffer over-read because of an off-by-one error...
CVE-2022-47516
An issue was discovered in the libsofia-sip fork in drachtio-server before 0.8.20. It allows remote attackers to cause a denial of service daemon crash via a crafted UDP message that leads to a failure of the libsofia-sip-ua/tport/tport.c self assertion...
CVE-2022-47516
An issue was discovered in the libsofia-sip fork in drachtio-server before 0.8.20. It allows remote attackers to cause a denial of service daemon crash via a crafted UDP message that leads to a failure of the libsofia-sip-ua/tport/tport.c self assertion...
Cross site request forgery (csrf)
An issue was discovered in drachtio-server before 0.8.20. It allows remote attackers to cause a denial of service daemon crash via a long message in a TCP request that leads to std::lengtherror...
Heap overflow
An issue was discovered in the libsofia-sip fork in drachtio-server before 0.8.19. It allows remote attackers to cause a denial of service daemon crash via a crafted UDP message that causes a urlcanonize2 heap-based buffer over-read because of an off-by-one error...
CVE-2022-47517
CVE-2022-47517 affects the libsofia-sip fork used by drachtio-server up to version 0.8.19. The issue is a heap-based buffer over-read in url_canonize2 triggered by a crafted UDP message, due to an off-by-one error, leading to denial of service (daemon crash). Public sources in the connected recor...
CVE-2022-47516
CVE-2022-47516 affects the Sofia-SIP library (libsofia-sip fork) used by drachtio-server prior to 0.8.20. The vulnerability allows remote attackers to cause a denial of service (daemon crash) via a crafted UDP message that triggers a self-assertion failure in libsofia-sip-ua/tport/tport.c. Relate...
CVE-2022-47515
CVE-2022-47515 affects the open‑source SIP server drachtio-server prior to version 0.8.20. A crafted, long TCP message can trigger a std::length_error, causing a denial of service and a daemon crash. Supported references indicate the issue exists in 0.8.x releases and patches/commits were issued ...
CVE-2022-47516
An issue was discovered in the libsofia-sip fork in drachtio-server before 0.8.20. It allows remote attackers to cause a denial of service daemon crash via a crafted UDP message that leads to a failure of the libsofia-sip-ua/tport/tport.c self assertion...
CVE-2022-47517
An issue was discovered in the libsofia-sip fork in drachtio-server before 0.8.19. It allows remote attackers to cause a denial of service daemon crash via a crafted UDP message that causes a urlcanonize2 heap-based buffer over-read because of an off-by-one error...