Candidate: CVE-2021-37706
PublicDate: 2021-12-22 18:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37706
 https://github.com/pjsip/pjproject/security/advisories/GHSA-2qpg-f6wf-w984
 https://github.com/pjsip/pjproject/commit/15663e3f37091069b8c98a7fce680dc04bc8e865
Description:
 PJSIP is a free and open source multimedia communication library written in
 C language implementing standard based protocols such as SIP, SDP, RTP,
 STUN, TURN, and ICE. In affected versions if the incoming STUN message
 contains an ERROR-CODE attribute, the header length is not checked before
 performing a subtraction operation, potentially resulting in an integer
 underflow scenario. This issue affects all users that use STUN. A malicious
 actor located within the victim’s network may forge and send a specially
 crafted UDP (STUN) message that could remotely execute arbitrary code on
 the victim’s machine. Users are advised to upgrade as soon as possible.
 There are no known workarounds.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL]


Patches_pjproject:
upstream_pjproject: needs-triage
trusty_pjproject: ignored (out of standard support)
xenial_pjproject: ignored (out of standard support)
bionic_pjproject: needs-triage