VDB

GCVE-110-MAGEIA-2017-170

GCVE-110-MAGEIA-2017-170
Advisory Published
Vulnetix · Advisory published June 14, 2017
In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the osip_clrncpy() function defined in osipparser2/osip_port.c (CVE-2016-10324). In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the _osip_message_to_str() function defined in osipparser2/osip_message_to_str.c, resulting in a remote DoS (CVE-2016-10325). In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the osip_body_to_str() function defined in osipparser2/osip_body.c, resulting in a remote DoS (CVE-2016-10326). In libosip2 in GNU 5.0.0, a malformed SIP message can lead to a heap buffer overflow in the msg_osip_body_parse() function defined in osipparser2/osip_message_parse.c, resulting in a remote DoS (CVE-2017-7853).

Affected Products

VendorProductVersionsPlatforms
Mageiaexosip4.0.0-4.2.mga5 (unaffected), 0 (affected)
Mageiasiproxd0 (affected), 0.8.1-14.3.mga5 (unaffected)
Mageialibosip20 (affected), 5.0.0-2.mga5 (unaffected)

Browse GCVE Records

73,053 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›