Libosip2 – BuffOverflow – DoS

Advisory IDRSN-SIP-1548

Vulnerability Information
In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to aheap buffer overflow in the osip_body_to_str() function defined inosipparser2/osip_body.c, resulting in a remote DoS.

Release Date
2017-04-13 00:00:00

RedShift Networks UCTM solution provides the industry’s first complete security solution developed for securing VOIP networks, endpoints and applications. Its dedicated CONDOR labs research team constantly scouts for new attack patterns, advanced penetration testing methods, vulnerabilities identification and roll out of new signatures to subscribed customers on a constant basis. For more information, visit

External Resources