Security

SECURITY.md

Security Policy

Supported Versions

All currently supported versions are eligible for security updates. Unsupported/unmaintained versions will no longer receive any updates, not even security ones.

You can find the full list of supported versions here.

Reporting a Vulnerability

For any security/vulnerability issues you may discover, please send us a full report at security@opensips.org.

Memory leak in cJSON lib
GHSA-2mg2-g46r-j4qr published Mar 15, 2023 by razvancrainea

Moderate
Vulnerability 3 in the codec_delete_XX() functions
GHSA-3ghx-j39m-cw4f published Mar 15, 2023 by razvancrainea

High
Vulnerability in the Content-Length Parser
GHSA-c6j5-f4h4-2xrq published Mar 15, 2023 by liviuchircu

High
Vulnerability in the ds_is_in_list() function
GHSA-pfm5-6vhv-3ff3 published Mar 15, 2023 by liviuchircu

Moderate
Vulnerability in the parse_uri() function
GHSA-358f-935m-7p9c published Mar 15, 2023 by razvancrainea

High
Vulnerability in the parse_via() function
GHSA-wxfg-3gwh-rhvx published Mar 15, 2023 by razvancrainea

High
Vulnerability in the parse_to_param() function
GHSA-qvj2-vqrg-f5jx published Mar 15, 2023 by razvancrainea

High
Vulnerability 2 in the codec_delete_XX() functions
GHSA-67w7-g4j8-3wcx published Mar 15, 2023 by razvancrainea

High
Vulnerability in the codec_delete_XX() functions
GHSA-xj5x-g52f-548h published Mar 15, 2023 by razvancrainea

High
Vulnerability in the building the local negative replies
GHSA-7pf3-24qg-8v9h published Mar 15, 2023 by razvancrainea

High

Learn more about advisories related to OpenSIPS/opensips in the GitHub Advisory Database