CVE-2023-27599 OpenSIPS has vulnerability in the parse_to_param() function

OpenSIPS is a Session Initiation Protocol SIP server implementation. Prior to versions 3.1.7 and 3.2.4, when the function appendhf handles a SIP message with a malformed To header, a call to the function abort is performed, resulting in a crash. This is due to the following check in datalump.c:39...

OSV-2021-1202 Heap-buffer-overflow in parse_to_param

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=38080 Crash type: Heap-buffer-overflow READ 1 Crash state: parsetoparam parseaddrspec parseto...