{"id":"OSV-2024-1424","summary":"Heap-buffer-overflow in extract_candidate","details":"OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=391689728\n\n```\nCrash type: Heap-buffer-overflow READ 8\nCrash state:\nextract_candidate\nparse_sdp_session\nparse_mixed_content\n```\n","modified":"2025-01-25T14:25:05.188301Z","published":"2025-01-25T00:17:13.787335Z","references":[{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=391689728"}],"affected":[{"package":{"name":"kamailio","ecosystem":"OSS-Fuzz","purl":"pkg:generic/kamailio"},"ranges":[{"type":"GIT","repo":"https://github.com/kamailio/kamailio","events":[{"introduced":"1e71168342894c992ab376bf8538c0953db31fe4"},{"fixed":"08eda6e89c1fb899959c3f07efd93db30d7cb30c"},{"fixed":"2790d202e2756e1b5037239983b134d04bdb73f3"},{"fixed":"0e51b497a19c525a89d5fead5e0854b2b18317dd"}]}],"versions":["5.6.0","5.6.1","5.6.2","5.6.3","5.6.4","5.6.5","5.6.6","5.7.0","5.7.1","5.7.2","5.7.3","5.7.4","5.7.5","5.7.6","5.8.0","5.8.1","5.8.2","5.8.3","5.8.4","5.8.5"],"ecosystem_specific":{"severity":"MEDIUM"},"database_specific":{"source":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/kamailio/OSV-2024-1424.yaml","fixed_range":"ec5c1907c21ca8a479eed330cc3be9900f98f95a:08eda6e89c1fb899959c3f07efd93db30d7cb30c","introduced_range":"22f9e269dd68edcb025e103d9aa1432423dd5550:199f13a7dfac8cd817850c6a6afe5ba510835418"}}],"schema_version":"1.7.3"}