Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 9 of 9 results


CVE-2020-27507

Medium priority

Some fixes available 3 of 6

The Kamailio SIP before 5.5.0 server mishandles INVITE requests with duplicated fields and overlength tag, leading to a buffer overflow that crashes the server or possibly have unspecified other impact.

1 affected packages

kamailio

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
kamailio Needs evaluation Not affected Fixed Fixed Fixed
Show less packages

CVE-2020-28361

Medium priority
Needs evaluation

Kamailio before 5.4.0, as used in Sip Express Router (SER) in Sippy Softswitch 4.5 through 5.2 and other products, allows a bypass of a header-removal protection mechanism via whitespace characters. This occurs in the remove_hf...

1 affected packages

kamailio

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
kamailio Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2018-16657

Medium priority

Some fixes available 2 of 3

In Kamailio before 5.0.7 and 5.1.x before 5.1.4, a crafted SIP message with an invalid Via header causes a segmentation fault and crashes Kamailio. The reason is missing input validation in the crcitt_string_array core...

1 affected packages

kamailio

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
kamailio Not affected Not affected Fixed Fixed
Show less packages

CVE-2018-14767

Low priority
Vulnerable

In Kamailio before 5.0.7 and 5.1.x before 5.1.4, a crafted SIP message with a double "To" header and an empty "To" tag causes a segmentation fault and crash. The reason is missing input validation in...

1 affected packages

kamailio

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
kamailio Not affected Not affected Not affected Vulnerable Vulnerable
Show less packages

CVE-2018-8828

High priority

Some fixes available 1 of 2

A Buffer Overflow issue was discovered in Kamailio before 4.4.7, 5.0.x before 5.0.6, and 5.1.x before 5.1.2. A specially crafted REGISTER message with a malformed branch or From tag triggers an off-by-one heap-based buffer...

1 affected packages

kamailio

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
kamailio Not affected Fixed
Show less packages

CVE-2015-1590

Medium priority
Ignored

The kamcmd administrative utility and default configuration in kamailio before 4.3.0 use /tmp/kamailio_ctl.

1 affected packages

kamailio

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
kamailio Not affected Not affected
Show less packages

CVE-2013-7426

Low priority
Not affected

Insecure Temporary file vulnerability in /tmp/kamailio_fifo in kamailio 4.0.1.

1 affected packages

kamailio

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
kamailio
Show less packages

CVE-2015-1591

Medium priority
Ignored

The kamailio build in kamailio before 4.2.0-2 process allows local users to gain privileges.

1 affected packages

kamailio

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
kamailio Not affected Not affected
Show less packages

CVE-2016-2385

Medium priority
Vulnerable

Heap-based buffer overflow in the encode_msg function in encode_msg.c in the SEAS module in Kamailio (formerly OpenSER and SER) before 4.3.5 allows remote attackers to cause a denial of service (memory corruption and process...

1 affected packages

kamailio

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
kamailio Not affected Not affected Not affected Not affected Vulnerable
Show less packages