1
Candidate: CVE-2016-10326
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10326
6
In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap
7
buffer overflow in the osip_body_to_str() function defined in
8
osipparser2/osip_body.c, resulting in a remote DoS.
12
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860287
13
https://savannah.gnu.org/support/index.php?109132
19
upstream_libosip2: needs-triage
20
precise_libosip2: ignored (reached end-of-life)
21
precise/esm_libosip2: DNE (precise was needed)
22
trusty_libosip2: needed
23
vivid/stable-phone-overlay_libosip2: DNE
24
vivid/ubuntu-core_libosip2: DNE
25
xenial_libosip2: released (4.1.0-2+deb8u1build0.16.04.1)
26
yakkety_libosip2: released (4.1.0-2+deb8u1build0.16.10.1)
27
zesty_libosip2: released (4.1.0-2+deb8u1build0.17.04.1)
28
artful_libosip2: not-affected (4.1.0-2.1)
29
bionic_libosip2: not-affected (4.1.0-2.1)
30
devel_libosip2: not-affected (4.1.0-2.1)