Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/sofia-sip@1.12.9-1
purl pkg:deb/debian/sofia-sip@1.12.9-1
Next non-vulnerable version 1.12.11+20110422.1-2.1+deb11u2
Latest non-vulnerable version 1.12.11+20110422.1-2.1+deb11u2
Risk 4.4
Vulnerabilities affecting this package (6)
Vulnerability Summary Fixed by
VCID-7zys-jfw3-rkhf
Aliases:
CVE-2022-31001
Sofia-SIP is an open-source Session Initiation Protocol (SIP) User-Agent library. Prior to version 1.13.8, an attacker can send a message with evil sdp to FreeSWITCH, which may cause crash. This type of crash may be caused by `#define MATCH(s, m) (strncmp(s, m, n = sizeof(m) - 1) == 0)`, which will make `n` bigger and trigger out-of-bound access when `IS_NON_WS(s[n])`. Version 1.13.8 contains a patch for this issue.
1.12.11+20110422.1-2.1+deb11u2
Affected by 0 other vulnerabilities.
VCID-ef58-vu9c-kffy
Aliases:
CVE-2022-31002
Sofia-SIP is an open-source Session Initiation Protocol (SIP) User-Agent library. Prior to version 1.13.8, an attacker can send a message with evil sdp to FreeSWITCH, which may cause a crash. This type of crash may be caused by a URL ending with `%`. Version 1.13.8 contains a patch for this issue.
1.12.11+20110422.1-2.1+deb11u2
Affected by 0 other vulnerabilities.
VCID-n84b-v1va-1fhu
Aliases:
CVE-2023-22741
Sofia-SIP is an open-source SIP User-Agent library, compliant with the IETF RFC3261 specification. In affected versions Sofia-SIP **lacks both message length and attributes length checks** when it handles STUN packets, leading to controllable heap-over-flow. For example, in stun_parse_attribute(), after we get the attribute's type and length value, the length will be used directly to copy from the heap, regardless of the message's left size. Since network users control the overflowed length, and the data is written to heap chunks later, attackers may achieve remote code execution by heap grooming or other exploitation methods. The bug was introduced 16 years ago in sofia-sip 1.12.4 (plus some patches through 12/21/2006) to in tree libs with git-svn-id: http://svn.freeswitch.org/svn/freeswitch/trunk@3774 d0543943-73ff-0310-b7d9-9358b9ac24b2. Users are advised to upgrade. There are no known workarounds for this vulnerability.
1.12.11+20110422.1-2.1+deb11u2
Affected by 0 other vulnerabilities.
VCID-nk9s-zqx5-vkgs
Aliases:
CVE-2022-31003
Sofia-SIP is an open-source Session Initiation Protocol (SIP) User-Agent library. Prior to version 1.13.8, when parsing each line of a sdp message, `rest = record + 2` will access the memory behind `\0` and cause an out-of-bounds write. An attacker can send a message with evil sdp to FreeSWITCH, causing a crash or more serious consequence, such as remote code execution. Version 1.13.8 contains a patch for this issue.
1.12.11+20110422.1-2.1+deb11u2
Affected by 0 other vulnerabilities.
VCID-qwqc-nghe-3ka1
Aliases:
CVE-2022-47516
An issue was discovered in the libsofia-sip fork in drachtio-server before 0.8.20. It allows remote attackers to cause a denial of service (daemon crash) via a crafted UDP message that leads to a failure of the libsofia-sip-ua/tport/tport.c self assertion.
1.12.11+20110422.1-2.1+deb11u2
Affected by 0 other vulnerabilities.
VCID-r456-aab2-1ubf
Aliases:
CVE-2023-32307
Sofia-SIP is an open-source SIP User-Agent library, compliant with the IETF RFC3261 specification. Referring to [GHSA-8599-x7rq-fr54](https://github.com/freeswitch/sofia-sip/security/advisories/GHSA-8599-x7rq-fr54), several other potential heap-over-flow and integer-overflow in stun_parse_attr_error_code and stun_parse_attr_uint32 were found because the lack of attributes length check when Sofia-SIP handles STUN packets. The previous patch of [GHSA-8599-x7rq-fr54](https://github.com/freeswitch/sofia-sip/security/advisories/GHSA-8599-x7rq-fr54) fixed the vulnerability when attr_type did not match the enum value, but there are also vulnerabilities in the handling of other valid cases. The OOB read and integer-overflow made by attacker may lead to crash, high consumption of memory or even other more serious consequences. These issue have been addressed in version 1.13.15. Users are advised to upgrade.
1.12.11+20110422.1-2.1+deb11u2
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-06T08:44:39.441000+00:00 Debian Oval Importer Affected by VCID-n84b-v1va-1fhu https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0
2026-06-06T07:21:38.768500+00:00 Debian Oval Importer Affected by VCID-r456-aab2-1ubf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0
2026-06-06T05:41:59.873331+00:00 Debian Oval Importer Affected by VCID-7zys-jfw3-rkhf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0
2026-06-06T05:21:04.171307+00:00 Debian Oval Importer Affected by VCID-nk9s-zqx5-vkgs https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0
2026-06-06T04:16:02.439308+00:00 Debian Oval Importer Affected by VCID-qwqc-nghe-3ka1 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0
2026-06-06T04:10:30.747432+00:00 Debian Oval Importer Affected by VCID-ef58-vu9c-kffy https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0