cbcvebase.
CVE-2022-41550
published 2022-10-11

CVE-2022-41550: GNU oSIP v5.3.0 was discovered to contain an integer overflow via the component osip_body_parse_header.

medium6.5CVSS 3.1
AVNACLPRNUIRSUCNINAH
GNU oSIP v5.3.0 was discovered to contain an integer overflow via the component osip_body_parse_header.

Affected

2 ranges
VendorProductVersion rangeFixed in
debianlibosip2< libosip2 5.3.0-2.1 (bookworm)libosip2 5.3.0-2.1 (bookworm)
gnuosip

CVSS provenance

nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
osv6.5MEDIUM