Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Gnu Subscribe
Filtered by product Osip
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-41550 1 Gnu 1 Osip 2022-10-13 N/A 6.5 MEDIUM
GNU oSIP v5.3.0 was discovered to contain an integer overflow via the component osip_body_parse_header.
CVE-2016-10324 1 Gnu 1 Osip 2017-11-03 7.5 HIGH 9.8 CRITICAL
In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the osip_clrncpy() function defined in osipparser2/osip_port.c.
CVE-2016-10325 1 Gnu 1 Osip 2017-11-03 5.0 MEDIUM 7.5 HIGH
In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the _osip_message_to_str() function defined in osipparser2/osip_message_to_str.c, resulting in a remote DoS.
CVE-2016-10326 1 Gnu 1 Osip 2017-11-03 5.0 MEDIUM 7.5 HIGH
In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the osip_body_to_str() function defined in osipparser2/osip_body.c, resulting in a remote DoS.
CVE-2017-7853 1 Gnu 1 Osip 2017-11-03 5.0 MEDIUM 7.5 HIGH
In libosip2 in GNU oSIP 4.1.0 and 5.0.0, a malformed SIP message can lead to a heap buffer overflow in the msg_osip_body_parse() function defined in osipparser2/osip_message_parse.c, resulting in a remote DoS.