| Título | Kamailio Project Kamailio SIP Server 5.5 Heap-based Buffer Overflow |
|---|
| Descripción | Kamailio v5.5 contains a heap-buffer-overflow triggered during configuration parsing. When module-function parameters are pre-fixed up and expression trees are destroyed, `rve_destroy()` can read past an allocated object and crash the process. Reproducible using a crafted `kamailio-basic.cfg` (replace config and start with `./src/kamailio -f ./kamailio-basic.cfg -L src/modules -Y runtime_dir -n 1 -D -E`). Test seeds `id:000151.log` and `id:000153.log` reproduce the issue in our ASan-enabled build. Impact: Denial of Service; potential for further memory-corruption exploitation.
|
|---|
| Fuente | ⚠️ https://shimo.im/docs/loqeMWMyZGtpEYqn/ |
|---|
| Usuario | zh_vul (UID 91488) |
|---|
| Sumisión | 2025-10-11 10:22 (hace 9 meses) |
|---|
| Moderación | 2025-10-25 13:52 (14 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 329874 [Kamailio 5.5 Configuration File src/core/rvalue.c rve_destroy desbordamiento de búfer] |
|---|
| Puntos | 20 |
|---|