Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2023-22741
HistoryJan 19, 2023 - 12:00 a.m.

CVE-2023-22741

2023-01-1900:00:00
ubuntu.com
ubuntu.com
15
sofia-sip
stun packets
remote code execution
heap overflow
length checks
vulnerability
upgrade

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.008 Low

EPSS

Percentile

81.6%

JSON

Sofia-SIP is an open-source SIP User-Agent library, compliant with the IETF
RFC3261 specification. In affected versions Sofia-SIP lacks both message
length and attributes length checks when it handles STUN packets, leading
to controllable heap-over-flow. For example, in stun_parse_attribute(),
after we get the attribute’s type and length value, the length will be used
directly to copy from the heap, regardless of the message’s left size.
Since network users control the overflowed length, and the data is written
to heap chunks later, attackers may achieve remote code execution by heap
grooming or other exploitation methods. The bug was introduced 16 years ago
in sofia-sip 1.12.4 (plus some patches through 12/21/2006) to in tree libs
with git-svn-id: http://svn.freeswitch.org/svn/freeswitch/trunk@3774
d0543943-73ff-0310-b7d9-9358b9ac24b2. Users are advised to upgrade. There
are no known workarounds for this vulnerability.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchsofia-sip< 1.12.11+20110422.1-2.1+deb10u3build0.18.04.1UNKNOWN
ubuntu20.04noarchsofia-sip< 1.12.11+20110422.1-2.1+deb10u3ubuntu0.20.04.1UNKNOWN
ubuntu22.04noarchsofia-sip< 1.12.11+20110422.1-2.1+deb10u3ubuntu0.22.04.1UNKNOWN
ubuntu22.10noarchsofia-sip< 1.12.11+20110422.1+1e14eea~dfsg-3ubuntu0.1UNKNOWN
ubuntu16.04noarchsofia-sip< 1.12.11+20110422.1-2.1+deb10u3ubuntu0.16.04.1~esm1UNKNOWN

Related

prion 1
debian 2
cve 1
mageia 1
openvas 4
veracode 1
alpinelinux 1
debiancve 1
osv 4
nessus 3
nvd 1
cvelist 1
ubuntu 1
prion
prion
Heap overflow
2023-01-19 22:15:00
debian
debian
[SECURITY] [DLA 3292-1] sofia-sip security update
2023-01-29 21:05:24
[SECURITY] [DSA 5410-1] sofia-sip
2023-05-24 10:39:40
cve
cve
CVE-2023-22741
2023-01-19 22:15:11
mageia
mageia
Updated sofia-sip packages fix security vulnerability
2023-02-07 03:06:39
openvas
openvas
Mageia: Security Advisory (MGASA-2023-0040)
2023-03-28 00:00:00
Debian: Security Advisory (DLA-3292-1)
2023-01-30 00:00:00
Debian: Security Advisory (DSA-5410-1)
2023-05-25 00:00:00
veracode
veracode
Out Of Bounds Write
2023-03-20 19:51:51
alpinelinux
alpinelinux
CVE-2023-22741
2023-01-19 22:15:11
debiancve
debiancve
CVE-2023-22741
2023-01-19 22:15:11
osv
osv
sofia-sip - security update
2023-01-29 00:00:00
CVE-2023-22741
2023-01-19 22:15:11
sofia-sip - security update
2023-05-24 00:00:00
nessus
nessus
Debian DLA-3292-1 : sofia-sip - LTS security update
2023-01-29 00:00:00
Debian DSA-5410-1 : sofia-sip - security update
2023-05-24 00:00:00
Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS : Sofia-SIP vulnerabilities (USN-5932-1)
2023-03-07 00:00:00
nvd
nvd
CVE-2023-22741
2023-01-19 22:15:11
cvelist
cvelist
CVE-2023-22741 heap-over-flow in stun_parse_attribute in sofia-sip
2023-01-19 21:20:22
ubuntu
ubuntu
Sofia-SIP vulnerabilities
2023-03-07 00:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.008 Low

EPSS

Percentile

81.6%

JSON
Related for UB:CVE-2023-22741
prion1debian2cve1mageia1openvas4veracode1alpinelinux1debiancve1osv4nessus3nvd1cvelist1ubuntu1