Impact
Possible buffer overread when parsing a specially crafted STUN message with unknown attribute. The vulnerability affects applications that uses STUN including PJNATH and PJSUA-LIB.
Patches
The patch is available as commit d8440f4 in the master branch.
For more information
If you have any questions or comments about this advisory:
Email us at security@pjsip.org
Reporter
google/oss-fuzz
Impact
Possible buffer overread when parsing a specially crafted STUN message with unknown attribute. The vulnerability affects applications that uses STUN including PJNATH and PJSUA-LIB.
Patches
The patch is available as commit d8440f4 in the master branch.
For more information
If you have any questions or comments about this advisory:
Email us at security@pjsip.org
Reporter
google/oss-fuzz