Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2022-24764

Опубликовано: 22 мар. 2022
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 5
CVSS3: 7.5

Описание

PJSIP is a free and open source multimedia communication library written in C. Versions 2.12 and prior contain a stack buffer overflow vulnerability that affects PJSUA2 users or users that call the API pjmedia_sdp_print(), pjmedia_sdp_media_print(). Applications that do not use PJSUA2 and do not directly call pjmedia_sdp_print() or pjmedia_sdp_media_print() should not be affected. A patch is available on the master branch of the pjsip/pjproject GitHub repository. There are currently no known workarounds.

РелизСтатусПримечание
bionic

ignored

end of standard support, was needs-triage
esm-apps/bionic

needs-triage

esm-apps/xenial

needs-triage

trusty

ignored

end of standard support
upstream

needs-triage

xenial

ignored

end of standard support

Показывать по

РелизСтатусПримечание
bionic

ignored

end of standard support, was needs-triage
devel

DNE

esm-apps/bionic

released

20180228.1.503da2b~ds1-1ubuntu0.1~esm1
esm-apps/focal

released

20190215.1.f152c98~ds1-1+deb10u2build0.20.04.1
focal

released

20190215.1.f152c98~ds1-1+deb10u2build0.20.04.1
impish

ignored

end of life
lunar

not-affected

20230206.0~ds1-5
mantic

not-affected

20230206.0~ds2-1.3
noble

DNE

oracular

DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 52%
0.00293
Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2022-24764

CVSS3: 7.5
nvd
около 3 лет назад

PJSIP is a free and open source multimedia communication library written in C. Versions 2.12 and prior contain a stack buffer overflow vulnerability that affects PJSUA2 users or users that call the API `pjmedia_sdp_print(), pjmedia_sdp_media_print()`. Applications that do not use PJSUA2 and do not directly call `pjmedia_sdp_print()` or `pjmedia_sdp_media_print()` should not be affected. A patch is available on the `master` branch of the `pjsip/pjproject` GitHub repository. There are currently no known workarounds.

debian логотип

CVE-2022-24764

CVSS3: 7.5
debian
около 3 лет назад

PJSIP is a free and open source multimedia communication library writt ...

fstec логотип

BDU:2022-03171

CVSS3: 8.6
fstec
около 3 лет назад

Уязвимость реализации функций pjmedia_sdp_print() и pjmedia_sdp_media_print() интерфейса PJSUA2 API мультимедийной коммуникационной библиотеки PJSI, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании

redos логотип

ROS-20220518-03

redos
около 3 лет назад

Множественные уязвимости pjproject

EPSS

Процентиль: 52%
0.00293
Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Уязвимость CVE-2022-24764