Candidate: CVE-2018-14767
PublicDate: 2018-07-31 06:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14767
 https://skalatan.de/blog/advisory-hw-2018-05
Description:
 In Kamailio before 5.0.7 and 5.1.x before 5.1.4, a crafted SIP message with
 a double "To" header and an empty "To" tag causes a segmentation fault and
 crash. The reason is missing input validation in the
 "build_res_buf_from_sip_req" core function. This could result in denial of
 service and potentially the execution of arbitrary code.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL]

Patches_kamailio:
upstream_kamailio: released (5.1.4-1)
precise/esm_kamailio: DNE
trusty_kamailio: ignored (reached end-of-life)
trusty/esm_kamailio: DNE (trusty was needs-triage)
xenial_kamailio: ignored (end of standard support, was needed)
bionic_kamailio: needed
cosmic_kamailio: ignored (reached end-of-life)
disco_kamailio: not-affected (5.2.1-1)
eoan_kamailio: not-affected (5.2.1-1)
focal_kamailio: not-affected (5.2.1-1)
groovy_kamailio: not-affected (5.2.1-1)
hirsute_kamailio: not-affected (5.2.1-1)
impish_kamailio: not-affected (5.2.1-1)
jammy_kamailio: not-affected (5.2.1-1)
devel_kamailio: not-affected (5.2.1-1)