{"id":"CVE-2020-27507","details":"The Kamailio SIP before 5.5.0 server mishandles INVITE requests with duplicated fields and overlength tag, leading to a buffer overflow that crashes the server or possibly have unspecified other impact.","modified":"2026-03-14T10:25:21.846602Z","published":"2023-03-15T20:15:10.283Z","references":[{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2023/05/msg00030.html"},{"type":"REPORT","url":"https://github.com/kamailio/kamailio/issues/2503"},{"type":"FIX","url":"https://github.com/kamailio/kamailio/commit/ada3701d22b1fd579f06b4f54fa695fa988e685f"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/kamailio/kamailio","events":[{"introduced":"0"},{"fixed":"d4c1a11aefb0192c1cb829959ef3a70b84cd7cbd"},{"fixed":"ada3701d22b1fd579f06b4f54fa695fa988e685f"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"5.5.0"}]}}],"versions":["3.0_pre1","after_0_9_4_pkg_merge","after_makefile_merges","after_testing_0_8_12_r0_merge","after_testing_0_8_12_r1_merge","after_xl","before_db_api_changes","before_dest_info_changes_2","before_kill_repl_add_rm","before_lumps_split","before_malloc_changes","before_new_timers","before_pa","before_replication_patch","before_socket_info_lists","before_str2ip_changes","before_tcp_port_aliases","before_testing_0_8_12_r0_merge","before_testing_0_8_12_r1_merge","before_tm_timers","before_xl","bflmpsvz","bigbang","bogdan_final_version","budvar","fixstats","gpled","ipv4_working","ipv6","last_merge_to_janakj","listen_ifs","mem-fixes","myself_port_lo","new_cfg_compiles","new_hash","new_timers","old_mod_iface","orig","ported_ser_cvs_modules","post-zt","pre-bigbang","pre-zt","pre22","pre6-tcp4","pre6-tcp5-tm","pre_fixstats","pregpl","pure_ser_cvs_modules","rel_0_8_11_root","rel_0_9_0_root","ser_0-8-6-4","ser_081-plugins","ser_082","ser_0839_errors","ser_0_7","ser_0_8_10","ser_0_8_10_pre2","ser_0_8_10_pre3","ser_0_8_10_pre4","ser_0_8_10_pre5","ser_0_8_3_1","ser_0_8_3_2","ser_0_8_6-5-stable","ser_0_8_6-6-beer-release","ser_0_8_7-0-unstable","ser_0_8_8-final-cd-release","ser_0_8_9","ser_0_8_9-release","sip_083","sip_pre-plugin","sr_3.1_freeze","sr_before_modules_merge","sr_simpleconfig","srv","tcp2","testing_0_8_12_root","tmp_pcl_tag_17368Js8","v03","v0_2","v0_8_11_pre9","v0_8_11dev34","v0_8_11pre29","v0_8_11pre29-prerelease","v0_8_11pre29-prerelease-cd","v0_8_11pre8","v0_8_12_t02_merged_w_v0_8_11pre35","v0_8_12dev-t03","v0_8_12dev_t05","v0_8_12dev_t13","v0_8_13dev-t16","v0_8_8","voicemail_0_1_0","wo_sp"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-27507.json","vanir_signatures":[{"target":{"function":"build_local_reparse","file":"src/modules/tm/t_msgbuilder.c"},"id":"CVE-2020-27507-0f70405b","digest":{"function_hash":"114316787224008964060248551968142233233","length":5300},"source":"https://github.com/kamailio/kamailio/commit/ada3701d22b1fd579f06b4f54fa695fa988e685f","signature_version":"v1","deprecated":false,"signature_type":"Function"},{"target":{"file":"src/modules/tm/t_msgbuilder.c"},"id":"CVE-2020-27507-5e3d2850","digest":{"threshold":0.9,"line_hashes":["244853819632765666073470842383683866680","309167914881267807067215393314209984378","233439026921492938211186183726557894273","208478992480895715052172760531444741065","98354347111107095773283480051690903316","247666984453264000557428290713400669560","277341704800932035958278878296165285977","49356985030235935141449157401671665168","15339373829704610241290920527076321161","31324623973729729167260177738395379528","310933076340412908423676356898652860946","66769361556101405352954786194173159080","101009839613711374645398553541089531696","325287812837834173263465784407286470343","28586271685691763243815955786253738952","85518898683136243251146147658562743361","197206930985602377692022338456147357993","112024895113507828268144598513674332814","113539570549639087535043534570725549278"]},"source":"https://github.com/kamailio/kamailio/commit/ada3701d22b1fd579f06b4f54fa695fa988e685f","signature_version":"v1","deprecated":false,"signature_type":"Line"}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}