CVE-2023-28099
Summary
| CVE | CVE-2023-28099 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2023-03-15 23:15:00 UTC |
| Updated | 2023-11-07 04:10:00 UTC |
| Description | OpenSIPS is a Session Initiation Protocol (SIP) server implementation. Prior to versions 3.1.9 and 3.2.6, if `ds_is_in_list()` is used with an invalid IP address string (`NULL` is illegal input), OpenSIPS will attempt to print a string from a random address (stack garbage), which could lead to a crash. All users of `ds_is_in_list()` without the `$si` variable as 1st parameter could be affected by this vulnerability to a larger, lesser or no extent at all, depending if the data passed to the function is a valid IPv4 or IPv6 address string or not. Fixes will are available starting with the 3.1.9 and 3.2.6 minor releases. There are no known workarounds. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| dispatcher: Fix IP printing on error case · OpenSIPS/opensips@e2f13d3 · GitHub | MISC | github.com | |
| [Vuln] Potential arbitrary-memory-log in ds_is_in_list due to uninit varaible on stack · Issue #2780 · OpenSIPS/opensips · GitHub | MISC | github.com | |
| Vulnerability in the ds_is_in_list() function · Advisory · OpenSIPS/opensips · GitHub | MISC | github.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.