Описание
A Buffer Overflow issue was discovered in Kamailio before 4.4.7, 5.0.x before 5.0.6, and 5.1.x before 5.1.2. A specially crafted REGISTER message with a malformed branch or From tag triggers an off-by-one heap-based buffer overflow in the tmx_check_pretran function in modules/tmx/tmx_pretran.c.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 5.1.2-1ubuntu2 |
| cosmic | not-affected | 5.1.2-1ubuntu2 |
| devel | not-affected | 5.1.2-1ubuntu2 |
| disco | not-affected | 5.1.2-1ubuntu2 |
| eoan | not-affected | 5.1.2-1ubuntu2 |
| esm-apps/bionic | not-affected | 5.1.2-1ubuntu2 |
| esm-apps/xenial | released | 4.3.4-1.1ubuntu2.1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [code not present]] |
| precise/esm | DNE |
Показывать по
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
A Buffer Overflow issue was discovered in Kamailio before 4.4.7, 5.0.x before 5.0.6, and 5.1.x before 5.1.2. A specially crafted REGISTER message with a malformed branch or From tag triggers an off-by-one heap-based buffer overflow in the tmx_check_pretran function in modules/tmx/tmx_pretran.c.
A Buffer Overflow issue was discovered in Kamailio before 4.4.7, 5.0.x ...
A Buffer Overflow issue was discovered in Kamailio before 4.4.7, 5.0.x before 5.0.6, and 5.1.x before 5.1.2. A specially crafted REGISTER message with a malformed branch or From tag triggers an off-by-one heap-based buffer overflow in the tmx_check_pretran function in modules/tmx/tmx_pretran.c.
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3