EUVD-2022-29599

Malicious code in bioql PyPI...

Out-of-Bounds Read And Write

pjproject is vulnerable to out-of-bounds read and write. An attacker is able to cause out-of-bounds read/write via pjmediartcpfbparserpsi function, when parsing incoming RTCP feedback RPSI Reference Picture Selection Indication packet...

CVE-2022-24786 Potential out-of-bound read/write in PJSIP

PJSIP is a free and open source multimedia communication library written in C. PJSIP versions 2.12 and prior do not parse incoming RTCP feedback RPSI Reference Picture Selection Indication packet, but any app that directly uses pjmediartcpfbparserpsi will be affected. A patch is available in the...

CVE-2022-24786

CVE-2022-24786 affects PJSIP (PJPROJECT) versions 2.12 and earlier. The root cause is that PJMEDIA RTC PTS/RPSI feedback parsing does not correctly handle RTCP RPSI packets, enabling an impact to applications that directly call pjmedia_rtcp_fb_parse_rpsi(). The issue is documented with a patch av...

PT-2022-2680 · Pjsip +2 · Pjsip +2

Name of the Vulnerable Software and Affected Versions: PJSIP versions 2.12 and prior Description: The issue is related to the implementation of the pjmedia rtcp fb parse rpsi function in the PJSIP multimedia communication library. It is associated with a buffer overflow in memory when processing ...