{"id":"CVE-2026-25994","summary":"PJSIP has a heap buffer overflow in ICE with long username","details":"PJSIP is a free and open source multimedia communication library written in C. In 2.16 and earlier, a buffer overflow vulnerability exists in PJNATH ICE Session when processing credentials with excessively long usernames.","aliases":["GHSA-j29p-pvh2-pvqp"],"modified":"2026-04-02T13:18:54.239516Z","published":"2026-02-11T20:56:47.340Z","database_specific":{"cna_assigner":"GitHub_M","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/25xxx/CVE-2026-25994.json","cwe_ids":["CWE-120"]},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/25xxx/CVE-2026-25994.json"},{"type":"ADVISORY","url":"https://github.com/pjsip/pjproject/security/advisories/GHSA-j29p-pvh2-pvqp"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-25994"},{"type":"FIX","url":"https://github.com/pjsip/pjproject/commit/063b3a155f163cc5a9a1df2c56b6720fd3a0dbb0"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/pjsip/pjproject","events":[{"introduced":"0"},{"fixed":"063b3a155f163cc5a9a1df2c56b6720fd3a0dbb0"}]}],"versions":["0.3-pre","0.5.0-before-conf","0.5.0.1","0.5.10","0.5.10.1","0.5.10.2","0.5.10.3","0.5.10.4","0.5.2","0.5.3","0.5.4","0.5.5.1","0.5.6","0.5.6.1","0.5.7","0.5.8","0.5.9","0.7.0","0.7.0-rc1","0.8.0","0.9.0","1.0","1.0-rc1","1.0-rc2","1.0-rc3","1.0-rc4","1.0.1","1.0.2","1.0.3","1.1","1.10","1.12","1.14","1.14.2","1.16","1.2","1.3","1.4","1.4.5","1.5","1.5.5","1.6","1.7","1.8","1.8.10","1.8.5","2.0","2.0-alpha","2.0-alpha2","2.0-beta","2.0-rc","2.0.1","2.1","2.10","2.11","2.11.1","2.12","2.12.1","2.13","2.13.1","2.14","2.14.1","2.15","2.15.1","2.16","2.2","2.2.1","2.3","2.4","2.4.5","2.5","2.5.1","2.5.5","2.6","2.7","2.7.1","2.7.2","2.8","2.9"],"database_specific":{"vanir_signatures":[{"digest":{"length":1413,"function_hash":"330511024184510519339281544453153049606"},"deprecated":false,"signature_version":"v1","target":{"file":"pjnath/src/pjnath/ice_session.c","function":"pj_ice_sess_create_check_list"},"id":"CVE-2026-25994-6b37ed84","source":"https://github.com/pjsip/pjproject/commit/063b3a155f163cc5a9a1df2c56b6720fd3a0dbb0","signature_type":"Function"},{"digest":{"threshold":0.9,"line_hashes":["293532994452693411088968490911701882292","208609953946531989005871956697892823297","175731945472584001358641113581309243409","318557259801844700363321757796719854397","298927417505901589194577919812119803202","237448646092079163430573155578999194662","168458120258307680881271966288486114793"]},"deprecated":false,"signature_version":"v1","target":{"file":"pjnath/src/pjnath/ice_session.c"},"id":"CVE-2026-25994-ac0df524","source":"https://github.com/pjsip/pjproject/commit/063b3a155f163cc5a9a1df2c56b6720fd3a0dbb0","signature_type":"Line"}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-25994.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V4","score":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U"}]}