An issue was discovered in the libsofia-sip fork in drachtio-server before 0.8.19. It allows remote attackers to cause a denial of service (daemon crash) via a crafted UDP message that causes a url_canonize2 heap-based buffer over-read because of an off-by-one error.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-12-18T00:00:00
Updated: 2024-08-03T14:55:08.201Z
Reserved: 2022-12-18T00:00:00
Link: CVE-2022-47517
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-12-18T05:15:11.300
Modified: 2024-11-21T07:32:07.610
Link: CVE-2022-47517
Redhat
No data.