CVE-2023-22741 heap-over-flow in stun_parse_attribute in sofia-sip

Sofia-SIP is an open-source SIP User-Agent library, compliant with the IETF RFC3261 specification. In affected versions Sofia-SIP lacks both message length and attributes length checks when it handles STUN packets, leading to controllable heap-over-flow. For example, in stunparseattribute, after ...

CVE-2023-22741 heap-over-flow in stun_parse_attribute in sofia-sip

Sofia-SIP is an open-source SIP User-Agent library, compliant with the IETF RFC3261 specification. In affected versions Sofia-SIP lacks both message length and attributes length checks when it handles STUN packets, leading to controllable heap-over-flow. For example, in stunparseattribute, after ...

CVE-2023-22741 heap-over-flow in stun_parse_attribute in sofia-sip

Sofia-SIP is an open-source SIP User-Agent library, compliant with the IETF RFC3261 specification. In affected versions Sofia-SIP lacks both message length and attributes length checks when it handles STUN packets, leading to controllable heap-over-flow. For example, in stunparseattribute, after ...

CVE-2023-22741

Summary: CVE-2023-22741 affects Sofia-SIP’s handling of STUN packets, where the code does not validate message length and attribute length, enabling controllable heap overflow. This could allow remote code execution via heap grooming or related exploitation techniques. The issue originates from S...

Sofia-SIP 缓冲区错误漏洞

Sofia-SIP is an open source SIP user agent library from the individual developers of freeswitch that conforms to the IETF RFC3261 specification. A buffer error vulnerability exists in Sofia-SIP that stems from a lack of message length and attribute length checks when processing STUN packets...

PT-2023-6421 · Sofia-Sip +3 · Sofia-Sip +3

Name of the Vulnerable Software and Affected Versions: Sofia-SIP versions 1.12.4 and later, up to the version before the fix was introduced Description: The issue is related to the lack of message length and attributes length checks when handling STUN packets, leading to a controllable...

drachtio-server 安全漏洞

drachtio-server is a drachtio open source SIP server built on the sofia SIP stack. A security vulnerability exists in drachtio-server prior to version 0.8.20, which stems from a vulnerability that could allow a remote attacker to cause a denial of service daemon crash via a crafted UDP message,...

drachtio-server memory mis-reference vulnerability

drachtio-server is a SIP server built on the sofia SIP stack by drachtio open source. drachtio drachtio-server version 0.8.18 is vulnerable to a memory misquoting vulnerability that stems from the request-handler.cpp component receiving requests when the event The cb instruction responsible for...

drachtio-server information disclosure vulnerability

drachtio-server is a drachtio open source SIP server built on the sofia SIP stack. drachtio drachtio-server version 0.8.18 has an information disclosure vulnerability that stems from the fact that local users can retrieve sensitive data and attackers can use the vulnerability to obtain sensitive...

GLSA-202210-18 : Sofia-SIP: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202210-18 Sofia-SIP: Multiple Vulnerabilities - Sofia-SIP is an open-source Session Initiation Protocol SIP User-Agent library. Prior to version 1.13.8, an attacker can send a message with evil sdp to FreeSWITCH, which may cause...

Mageia: Security Advisory (MGASA-2022-0343)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated sofia-sip packages fix security vulnerability

An attacker can send a message with evil sdp to FreeSWITCH, which may a cause a crash due to an out-of-bounds access. CVE-2022-31001 An attacker can send a message with evil sdp to FreeSWITCH, which may cause a crash. CVE-2022-31002 An out-of-bounds write. CVE-2022-31003...

MGASA-2022-0343 Updated sofia-sip packages fix security vulnerability

An attacker can send a message with evil sdp to FreeSWITCH, which may a cause a crash due to an out-of-bounds access. CVE-2022-31001 An attacker can send a message with evil sdp to FreeSWITCH, which may cause a crash. CVE-2022-31002 An out-of-bounds write. CVE-2022-31003...

Debian: Security Advisory (DLA-3091-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 3091-1] sofia-sip security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3091-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA September 02, 2022 https://wiki.debian.org/LTS -...

DLA-3091-1 sofia-sip - security update

Bulletin has no description...

Debian dla-3091 : libsofia-sip-ua-dev - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3091 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3091-1 [email protected]...

sofia-waesche.de Cross Site Scripting vulnerability OBB-2738337

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

DEBIAN-CVE-2022-31001

Sofia-SIP is an open-source Session Initiation Protocol SIP User-Agent library. Prior to version 1.13.8, an attacker can send a message with evil sdp to FreeSWITCH, which may cause crash. This type of crash may be caused by define MATCHs, m strncmps, m, n = sizeofm - 1 == 0, which will make n...

ALPINE-CVE-2022-31003

Sofia-SIP is an open-source Session Initiation Protocol SIP User-Agent library. Prior to version 1.13.8, when parsing each line of a sdp message, rest = record + 2 will access the memory behind \0 and cause an out-of-bounds write. An attacker can send a message with evil sdp to FreeSWITCH, causin...