pjproject is vulnerable to denial of service. The vulnerability exists due to the infinite loop in the xml parser, allowing an attacker to cause an application crash
github.com/pjsip/pjproject/commit/856f87c2e97a27b256482dbe0d748b1194355a21
github.com/pjsip/pjproject/security/advisories/GHSA-5x45-qp78-g4p4
lists.debian.org/debian-lts-announce/2022/05/msg00047.html
lists.debian.org/debian-lts-announce/2022/11/msg00021.html
secdb.alpinelinux.org/edge/main.yaml
security.gentoo.org/glsa/202210-37
www.debian.org/security/2022/dsa-5285