13 matches found
EUVD-2021-30716
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2021-43845
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PJSIP is a free and open source multimedia communication library. In version 2.11.1 and prior, if incoming RTCP XR message contain block, the data field is not...
Debian dla-3194 : asterisk - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3194 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3194-1 [email protected]...
Out-of-Bounds Read
pjproject is vulnerable to out of bounds read. The vulnerability exists in pjmediartcpxrrxrtcpxr of rtcpxr.c due to a lack of validation of received packet size which allows an attacker to send a RTCP XR message with an invalid packet size...
CVE-2021-43845
PJSIP is a free and open source multimedia communication library. In version 2.11.1 and prior, if incoming RTCP XR message contain block, the data field is not checked against the received packet size, potentially resulting in an out-of-bound read access. This affects all users that use PJMEDIA a...
CVE-2021-43845
PJSIP is a free and open source multimedia communication library. In version 2.11.1 and prior, if incoming RTCP XR message contain block, the data field is not checked against the received packet size, potentially resulting in an out-of-bound read access. This affects all users that use PJMEDIA a...
CVE-2021-43845
PJSIP is a free and open source multimedia communication library. In version 2.11.1 and prior, if incoming RTCP XR message contain block, the data field is not checked against the received packet size, potentially resulting in an out-of-bound read access. This affects all users that use PJMEDIA a...
Design/Logic Flaw
PJSIP is a free and open source multimedia communication library. In version 2.11.1 and prior, if incoming RTCP XR message contain block, the data field is not checked against the received packet size, potentially resulting in an out-of-bound read access. This affects all users that use PJMEDIA a...
CVE-2021-43845
PJSIP is a free and open source multimedia communication library. In version 2.11.1 and prior, if incoming RTCP XR message contain block, the data field is not checked against the received packet size, potentially resulting in an out-of-bound read access. This affects all users that use PJMEDIA a...
CVE-2021-43845 Prevent out-of-bounds read in PJSIP
PJSIP is a free and open source multimedia communication library. In version 2.11.1 and prior, if incoming RTCP XR message contain block, the data field is not checked against the received packet size, potentially resulting in an out-of-bound read access. This affects all users that use PJMEDIA a...
CVE-2021-43845
CVE-2021-43845 affects the PJPROJECT/JAMI stack used by PJMEDIA. In version 2.11.1 and earlier, processing of incoming RTCP XR messages with a block may not validate the data field against the packet size, potentially enabling out-of-bounds reads. Debian/DSA/DLA entries note fixes in ring (embedd...
PT-2021-23975 · Pjsip +3 · Pjsip +3
Name of the Vulnerable Software and Affected Versions: PJSIP versions 2.11.1 and prior Description: The issue affects PJSIP, a free and open source multimedia communication library. In the affected versions, if an incoming RTCP XR message contains a block, the data field is not checked against th...
CVE-2021-43845
PJSIP is a free and open source multimedia communication library. In version 2.11.1 and prior, if incoming RTCP XR message contain block, the data field is not checked against the received packet size, potentially resulting in an out-of-bound read access. This affects all users that use PJMEDIA a...