Stack Buffer Overflow

pjproject, edge is vulnerable to stack buffer overflow. The vulnerability exists because pjsip users that use STUN in their applications, either by: setting a STUN server in their account/media config in pjsua/pjsua2 level, or directly using pjlib-util/stunsimple api...

CVE-2017-16875

An issue was discovered in Teluu pjproject pjlib and pjlib-util in PJSIP before 2.7.1. The ioqueue component may issue a double key unregistration after an attacker initiates a socket connection with specific settings and sequences. Such double key unregistration will trigger an integer overflow,...

CVE-2017-16875

CVE-2017-16875 affects Teluu pjproject (PJLIB/PJLIB-UTIL) in PJSIP prior to 2.7.1. The ioqueue component may perform a double key unregistration after a crafted socket sequence, triggering an integer overflow that can cause ioqueue backends to reject future key registrations. Affected software is...

CVE-2017-16872

CVE-2017-16872 affects Teluu pjproject (pjlib and pjlib-util) in PJSIP before 2.7.1. The issue arises when parsing numeric SIP header fields (e.g., CSeq, ttl, port); values can overflow and may be captured incorrectly or cause a buffer overrun if converted back to strings, enabling a potential ex...

PJSIP Teluu pjproject pjlib and pjlib-util Buffer Overflow Vulnerability

PJSIP is an open source, free multimedia communication library written in C. Teluu pjproject pjlib is one of the small framework libraries; pjlib-util is one of the auxiliary tool libraries . An integer overflow vulnerability exists in Teluu pjproject pjlib and pjlib-util in versions of PJSIP pri...

PJSIP Teluu pjproject pjlib and pjlib-util Integer Overflow Vulnerability

PJSIP is an open source, free multimedia communication library written in C. Teluu pjproject pjlib is one of the small framework libraries; pjlib-util is one of the auxiliary tool libraries . An integer overflow vulnerability exists in Teluu pjproject pjlib and pjlib-util in versions of PJSIP pri...