6 matches found
CVE-2026-52986 netfilter: nf_conntrack_sip: don't use simple_strtoul
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfconntracksip: don't use simplestrtoul Replace unsafe port parsing in epaddrlen, ctsipparseheaderuri, and ctsipparserequest with a new sipparseport helper that validates each digit against the buffer limit, eliminatin...
CVE-2026-52986
The CVE-2026-52986 issue affects the Linux kernel netfilter nf_conntrack_sip module, where unsafe port parsing on non-NUL-terminated data allowed malformed SIP packets to affect conntrack processing. The fix introduces a dedicated sip_parse_port() that validates each digit against the buffer limi...
PT-2026-51880
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the netfilter nf conntrack sip module due to unsafe port parsing. The system used the simple strtoul function, which assumes strings are NUL-terminated, on...
EUVD-2007-0431
Malware in sbrugna...
Code injection
AVM Fritz!Box 7050, and possibly other product models, allows remote attackers to cause a denial of service VoIP application crash via a zero-length UDP packet to the SIP port port 5060...
CVE-2007-0431
AVM Fritz!Box 7050, and possibly other product models, allows remote attackers to cause a denial of service VoIP application crash via a zero-length UDP packet to the SIP port port 5060...