{"id":"OSV-2022-1165","summary":"Heap-buffer-overflow in parse_content_length","details":"OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=53199\n\n```\nCrash type: Heap-buffer-overflow READ 1\nCrash state:\nparse_content_length\nget_hdr_field\nparse_headers\n```\n","modified":"2026-05-01T14:19:49.444025Z","published":"2022-11-12T13:00:05.964113Z","references":[{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=53199"}],"affected":[{"package":{"name":"opensips","ecosystem":"OSS-Fuzz","purl":"pkg:generic/opensips"},"ranges":[{"type":"GIT","repo":"https://github.com/OpenSIPS/opensips","events":[{"introduced":"4bc9d9603f6612f5b294eb6fa55ab38a474d1ce2"},{"introduced":"0cca86fe789d77ea3e2b58326d6f282eb3433544"},{"introduced":"1a71fded7d736ff53b6dc005e3f10626417a9d21"}]}],"versions":["3.1.10","3.1.11","3.1.12","3.2.7","3.2.8","3.2.9","3.3.0","3.3.0-beta","3.3.0-rc1","3.3.1","3.3.2","3.1.13","3.2.10","3.3.3","3.1.14","3.2.11","3.3.4","3.1.15","3.2.12","3.3.5","3.4.0-beta","3.4.0-rc1","3.1.16","3.2.13","3.3.6","3.4.0","3.1.17","3.2.14","3.3.7","3.4.1","3.2.15","3.3.8","3.4.2","3.2.16","3.3.9","3.4.3","3.2.17","3.3.10","3.4.4","3.2.18","3.4.5","3.5.0-beta","3.2.19","3.4.6","3.5.0-rc1","3.4.7","3.5.0","3.4.8","3.5.1","3.4.9","3.5.2","3.4.10","3.5.3","3.4.11","3.5.4","3.4.12","3.5.5","3.6.0-beta","3.4.13","3.5.6","3.6.0","3.4.14","3.5.7","3.6.1","3.4.15","3.5.8","3.6.2","3.4.16","3.5.9","3.6.3","3.4.17","3.6.4","4.0.0-beta"],"ecosystem_specific":{"severity":"HIGH"},"database_specific":{"introduced_range":"18633ab55e4597e7d3bedef72bbaf9971497560e:9d5dd9539d54b2186f31d2447823cae9108b9c31","source":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/opensips/OSV-2022-1165.yaml"}}],"schema_version":"1.7.5"}