Headline
CVE-2022-31002: Merge pull request from GHSA-g3x6-p824-x6hm · freeswitch/sofia-sip@51841eb
Sofia-SIP is an open-source Session Initiation Protocol (SIP) User-Agent library. Prior to version 1.13.8, an attacker can send a message with evil sdp to FreeSWITCH, which may cause a crash. This type of crash may be caused by a URL ending with %. Version 1.13.8 contains a patch for this issue.
@@ -364,7 +364,12 @@ char *url_canonize2(char *d, char const * const s, size_t n,
continue;
}
h1 = s[i + 1], h2 = s[i + 2];
h1 = s[i + 1];
if (!h1) {
*d = '\0’;
return NULL;
}
h2 = s[i + 2];
if (!IS_HEX(h1) || !IS_HEX(h2)) {
*d = '\0’;
@@ -422,7 +427,12 @@ char *url_canonize3(char *d, char const * const s, size_t n,
continue;
}
h1 = s[i + 1], h2 = s[i + 2];
h1 = s[i + 1];
if (!h1) {
*d = '\0’;
return NULL;
}
h2 = s[i + 2];
if (!IS_HEX(h1) || !IS_HEX(h2)) {
*d = '\0’;
Related news
Debian Linux Security Advisory 5410-1 - Multiple security issues were discovered in Sofia-SIP, a SIP User-Agent library, which could result in denial of service.
Ubuntu Security Notice 5932-1 - It was discovered that Sofia-SIP incorrectly handled specially crafted SDP packets. A remote attacker could use this issue to cause applications using Sofia-SIP to crash, leading to a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 16.04 ESM, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. It was discovered that Sofia-SIP incorrectly handled specially crafted UDP packets. A remote attacker could use this issue to cause applications using Sofia-SIP to crash, leading to a denial of service.