Bug 1200116 - (CVE-2022-31001) VUL-0: CVE-2022-31001: sofia-sip: out of bounds read can lead to remote DoS
(CVE-2022-31001)
VUL-0: CVE-2022-31001: sofia-sip: out of bounds read can lead to remote DoS
Status: NEW
Classification: openSUSE
Product: openSUSE Distribution
Classification: openSUSE
Component: Security
Leap 15.3
Other Other
: P3 - Medium : Minor (vote)
: ---
Assigned To: openSUSE GNOME
Security Team bot
https://smash.suse.de/issue/333271/
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2022-06-01 13:22 UTC by Carlos López
Modified: 2022-06-01 14:15 UTC (History)
0 users

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Carlos López 2022-06-01 13:22:57 UTC
CVE-2022-31001

Sofia-SIP is an open-source Session Initiation Protocol (SIP) User-Agent
library. Prior to version 1.13.8, an attacker can send a message with evil sdp
to FreeSWITCH, which may cause crash. This type of crash may be caused by
`#define MATCH(s, m) (strncmp(s, m, n = sizeof(m) - 1) == 0)`, which will make
`n` bigger and trigger out-of-bound access when `IS_NON_WS(s[n])`. Version
1.13.8 contains a patch for this issue.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-31001
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31001
https://github.com/freeswitch/sofia-sip/commit/a99804b336d0e16d26ab7119d56184d2d7110a36
https://github.com/freeswitch/sofia-sip/security/advisories/GHSA-79jq-hh82-cv9g
Comment 1 Carlos López 2022-06-01 13:24:29 UTC
Affected:
 - openSUSE:Factory
 - openSUSE:Backports:SLE-15-SP4
 - openSUSE:Backports:SLE-15-SP3