OpenSIPS 安全漏洞

OpenSIPS is a GPL-licensed SIP server implementation by the OpenSIPS Individual Developer. A security vulnerability exists in OpenSIPS version 3.2 and earlier versions, which stems from a segmentation error triggered by sending an incorrectly formatted "Via" header in a call to the "calctagsuffix...

DEBIAN-CVE-2018-16657

In Kamailio before 5.0.7 and 5.1.x before 5.1.4, a crafted SIP message with an invalid Via header causes a segmentation fault and crashes Kamailio. The reason is missing input validation in the crcittstringarray core function for calculating a CRC hash for To tags. An additional error is present ...

UBUNTU-CVE-2018-16657

In Kamailio before 5.0.7 and 5.1.x before 5.1.4, a crafted SIP message with an invalid Via header causes a segmentation fault and crashes Kamailio. The reason is missing input validation in the crcittstringarray core function for calculating a CRC hash for To tags. An additional error is present ...

PT-2018-13677 · Kamailio +2 · Kamailio +2

Name of the Vulnerable Software and Affected Versions: Kamailio versions prior to 5.0.7 Kamailio versions 5.1.x prior to 5.1.4 Description: A crafted SIP message with an invalid Via header can cause a segmentation fault and crash Kamailio due to missing input validation in the crcitt string array...