Lucene search
SuseOPENSUSE-SU-2017:1127-1HistoryApr 28, 2017 - 6:10 p.m.
Security update for libosip2 (important)
2017-04-2818:10:40
lists.opensuse.org
25
EPSS
0.004
Percentile
75.0%
This update for libosip2 fixes the following issues:
Changes in libosip2:
- CVE-2017-7853: In libosip2 in GNU 5.0.0, a malformed SIP message can
lead to a heap buffer overflow in the msg_osip_body_parse() function
defined in osipparser2/osip_message_parse.c, resulting in a remote DoS.
(boo#1034570) - CVE-2016-10326: In libosip2 in GNU oSIP 4.1.0, a malformed SIP message
can lead to a heap buffer overflow in the osip_body_to_str() function
defined in osipparser2/osip_body.c, resulting in a remote DoS.
(boo#1034571) - CVE-2016-10325: In libosip2 in GNU oSIP 4.1.0, a malformed SIP message
can lead to a heap buffer overflow in the _osip_message_to_str()
function defined in osipparser2/osip_message_to_str.c, resulting in a
remote DoS. (boo#1034572) - CVE-2016-10324: In libosip2 in GNU oSIP 4.1.0, a malformed SIP message
can lead to a heap buffer overflow in the osip_clrncpy() function
defined in osipparser2/osip_port.c. (boo#1034574)
Related
openvas
openvas
Debian: Security Advisory (DSA-3879-1)
2017-06-12 00:00:00
Debian: Security Advisory (DLA-898-1)
2018-01-16 00:00:00
Debian Security Advisory DSA 3879-1 (libosip2 - security update)
2017-06-13 00:00:00
nessus
nessus
Debian DSA-3879-1 : libosip2 - security update
2017-06-14 00:00:00
Debian DLA-898-1 : libosip2 security update
2017-04-17 00:00:00
openSUSE Security Update : libosip2 (openSUSE-2017-526)
2017-05-01 00:00:00
debian
debian
[SECURITY] [DSA 3879-1] libosip2 security update
2017-06-13 20:43:20
[SECURITY] [DLA 898-1] libosip2 security update
2017-04-16 20:38:13
osv
osv
libosip2 - security update
2017-04-16 00:00:00
libosip2 - security update
2017-06-13 00:00:00
mageia
mageia
Updated libosip2 packages fix security vulnerabilities
2017-06-14 16:50:35
prion
prion
debiancve
debiancve
cve
cve
ubuntucve
ubuntucve
cvelist
cvelist
nvd
nvd
freebsd
freebsd