| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 30 Mar 2016 14:40:49 +0300 From: Stelios Tsampas <stelios@...sus-labs.com> To: oss-security@...ts.openwall.com Cc: fulldisclosure@...lists.org, bugtraq@...urityfocus.com Subject: CVE-2016-2385 Kamailio SEAS module heap buffer overflow Kamailio (successor of former OpenSER and SER) is an Open Source SIP Server released under GPL. It can be used to build large platforms for VoIP and realtime communications, presence, WebRTC, Instant messaging and other applications. A heap overflow was found in Kamailio version 4.3.4 (possibly affecting earlier versions also). The heap overflow takes place in the encode_msg function of the SEAS module and can be triggered remotely if the module is enabled. A technical analysis of the vulnerability can be found here: https://census-labs.com/news/2016/03/30/kamailio-seas-heap-overflow/ The vulnerability may allow an attacker to cause memory corruption, process termination or potentially remote code execution. This defect has been fixed in version 4.3.5 of Kamailio. Administrators of affected systems are strongly advised to upgrade Kamailio to the latest stable release. Disclosure Timeline ------------------- Vendor Contact: February 12th, 2016 CVE assignment: February 15th, 2016 Vendor Patch Release: March 3rd, 2016 Public Advisory: March 30th, 2016 Regards, Stelios Tsampas IT Security Researcher CENSUS S.A.
Powered by blists - more mailing lists