漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
PJSIP: Heap use-after-free in PJSIP presence subscription termination handler
Vulnerability Description
PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, a heap use-after-free vulnerability exists in PJSIP's event subscription framework (evsub.c) that is triggered during presence unsubscription (SUBSCRIBE with Expires=0). This issue has been patched in version 2.17.
CVSS Information
N/A
Vulnerability Type
释放后使用
Vulnerability Title
PJSIP 资源管理错误漏洞
Vulnerability Description
PJSIP是pjsip开源的一个免费和开源的多媒体通信库,用C语言编写,实现基于标准的协议,如SIP, SDP, RTP, STUN, TURN,和ICE。 PJSIP 2.17之前版本存在资源管理错误漏洞,该漏洞源于PJSIP的事件订阅框架中存在堆释放后重用漏洞,可能在取消订阅时触发。
CVSS Information
N/A
Vulnerability Type
N/A