CVE-2018-14767
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2018-14767
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-14767.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2018-14767
- Related
- Published
- 2018-07-31T06:29:00Z
- Modified
- 2024-12-05T15:17:09.752862Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
In Kamailio before 5.0.7 and 5.1.x before 5.1.4, a crafted SIP message with a double "To" header and an empty "To" tag causes a segmentation fault and crash. The reason is missing input validation in the "buildresbuffromsip_req" core function. This could result in denial of service and potentially the execution of arbitrary code.
- References
Affected packages
Alpine:v3.10 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:apk/alpine/kamailio?arch=source
Alpine:v3.11 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:apk/alpine/kamailio?arch=source
Alpine:v3.12 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:apk/alpine/kamailio?arch=source
Alpine:v3.13 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:apk/alpine/kamailio?arch=source
Alpine:v3.14 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:apk/alpine/kamailio?arch=source
Alpine:v3.15 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:apk/alpine/kamailio?arch=source
Alpine:v3.16 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:apk/alpine/kamailio?arch=source
Alpine:v3.17 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:apk/alpine/kamailio?arch=source
Alpine:v3.18 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:apk/alpine/kamailio?arch=source
Alpine:v3.19 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:apk/alpine/kamailio?arch=source
Alpine:v3.20 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:apk/alpine/kamailio?arch=source
Alpine:v3.21 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:apk/alpine/kamailio?arch=source
Alpine:v3.6 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:apk/alpine/kamailio?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.0.2-r4
Affected versions
1.*
1.5.1-r0
1.5.2-r0
1.5.2-r1
1.5.2-r2
1.5.2-r3
1.5.2-r4
1.5.2-r5
1.5.2-r6
1.5.2-r7
1.5.3-r0
1.5.3-r2
1.5.3-r3
1.5.3-r4
1.5.3-r5
1.5.3-r6
1.5.3-r7
1.5.3-r8
1.5.4-r0
1.5.4-r1
3.*
3.0.2-r4
3.0.2-r5
3.0.2-r6
3.0.3-r0
3.0.3-r1
3.0.4-r0
3.1.0-r0
3.1.0-r1
3.1.1-r0
3.1.1-r1
3.1.1-r2
3.1.1-r3
3.1.2-r0
3.1.2-r1
3.1.3-r0
3.1.3-r1
3.1.3-r2
3.1.4-r0
3.1.4-r1
3.2.0-r0
3.2.0-r1
3.2.0-r2
3.2.0-r3
3.2.1-r0
3.2.2-r0
3.2.2-r1
3.2.2-r2
3.2.2-r3
3.2.3-r0
3.2.3-r1
3.2.3-r2
3.2.3-r3
3.3.0-r0
3.3.1-r0
3.3.1-r1
3.3.2-r0
3.3.2-r1
3.3.3-r0
4.*
4.0.1-r0
4.0.1-r1
4.0.1-r2
4.0.1-r3
4.0.2-r0
4.0.2-r1
4.0.2-r2
4.0.3-r0
4.0.3-r1
4.0.4-r0
4.0.4-r1
4.1.0-r0
4.1.0-r1
4.1.0-r2
4.1.1-r0
4.1.1-r1
4.1.1-r2
4.1.1-r3
4.1.1-r4
4.1.5-r0
4.1.5-r1
4.1.5-r2
4.2.0-r0
4.2.1-r0
4.2.2-r0
4.2.2-r1
4.2.2-r2
4.2.3-r0
4.2.3-r1
4.2.3-r2
4.2.3-r3
4.2.3-r4
4.2.3-r5
4.2.4-r0
4.2.4-r1
4.2.4-r2
4.2.5-r0
4.2.5-r1
4.3.0-r0
4.3.1-r0
4.3.3-r0
4.3.3-r1
4.3.4-r0
4.3.4-r1
4.3.5-r0
4.4.0-r0
4.4.0-r1
4.4.2-r1
4.4.2-r2
4.4.2-r3
4.4.4-r0
4.4.5-r0
4.4.5-r1
5.*
5.0.0-r0
5.0.0-r1
5.0.1-r0
5.0.1-r1
5.0.2-r0
5.0.2-r1
5.0.2-r2
5.0.2-r3
Alpine:v3.7 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:apk/alpine/kamailio?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.1.4-r0
Affected versions
1.*
1.5.1-r0
1.5.2-r0
1.5.2-r1
1.5.2-r2
1.5.2-r3
1.5.2-r4
1.5.2-r5
1.5.2-r6
1.5.2-r7
1.5.3-r0
1.5.3-r2
1.5.3-r3
1.5.3-r4
1.5.3-r5
1.5.3-r6
1.5.3-r7
1.5.3-r8
1.5.4-r0
1.5.4-r1
3.*
3.0.2-r4
3.0.2-r5
3.0.2-r6
3.0.3-r0
3.0.3-r1
3.0.4-r0
3.1.0-r0
3.1.0-r1
3.1.1-r0
3.1.1-r1
3.1.1-r2
3.1.1-r3
3.1.2-r0
3.1.2-r1
3.1.3-r0
3.1.3-r1
3.1.3-r2
3.1.4-r0
3.1.4-r1
3.2.0-r0
3.2.0-r1
3.2.0-r2
3.2.0-r3
3.2.1-r0
3.2.2-r0
3.2.2-r1
3.2.2-r2
3.2.2-r3
3.2.3-r0
3.2.3-r1
3.2.3-r2
3.2.3-r3
3.3.0-r0
3.3.1-r0
3.3.1-r1
3.3.2-r0
3.3.2-r1
3.3.3-r0
4.*
4.0.1-r0
4.0.1-r1
4.0.1-r2
4.0.1-r3
4.0.2-r0
4.0.2-r1
4.0.2-r2
4.0.3-r0
4.0.3-r1
4.0.4-r0
4.0.4-r1
4.1.0-r0
4.1.0-r1
4.1.0-r2
4.1.1-r0
4.1.1-r1
4.1.1-r2
4.1.1-r3
4.1.1-r4
4.1.5-r0
4.1.5-r1
4.1.5-r2
4.2.0-r0
4.2.1-r0
4.2.2-r0
4.2.2-r1
4.2.2-r2
4.2.3-r0
4.2.3-r1
4.2.3-r2
4.2.3-r3
4.2.3-r4
4.2.3-r5
4.2.4-r0
4.2.4-r1
4.2.4-r2
4.2.5-r0
4.2.5-r1
4.3.0-r0
4.3.1-r0
4.3.3-r0
4.3.3-r1
4.3.4-r0
4.3.4-r1
4.3.5-r0
4.4.0-r0
4.4.0-r1
4.4.2-r1
4.4.2-r2
4.4.2-r3
4.4.4-r0
4.4.5-r0
4.4.5-r1
5.*
5.0.0-r0
5.0.0-r1
5.0.1-r0
5.0.1-r1
5.0.2-r0
5.0.2-r1
5.0.2-r2
5.0.4-r0
5.0.4-r1
5.0.6-r0
5.0.7-r0
Alpine:v3.8 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:apk/alpine/kamailio?arch=source
Alpine:v3.9 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:apk/alpine/kamailio?arch=source
Debian:11 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:deb/debian/kamailio?arch=source
Debian:12 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:deb/debian/kamailio?arch=source
Debian:13 / kamailio
Package
- Name
- kamailio
- Purl
- pkg:deb/debian/kamailio?arch=source
Git / github.com/kamailio/kamailio
Affected ranges
- Type
- GIT
- Repo
- https://github.com/kamailio/kamailio
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
3.*
3.0_pre1
5.*
5.0.0
5.0.1
5.0.2
5.0.3
5.0.4
5.0.5
5.0.6
Other
after_0_9_4_pkg_merge
after_makefile_merges
after_testing_0_8_12_r0_merge
after_testing_0_8_12_r1_merge
after_xl
before_db_api_changes
before_dest_info_changes_2
before_kill_repl_add_rm
before_lumps_split
before_malloc_changes
before_new_timers
before_pa
before_replication_patch
before_socket_info_lists
before_str2ip_changes
before_tcp_port_aliases
before_testing_0_8_12_r0_merge
before_testing_0_8_12_r1_merge
before_tm_timers
before_xl
bflmpsvz
bigbang
bogdan_final_version
budvar
fixstats
gpled
ipv4_working
ipv6
last_merge_to_janakj
listen_ifs
mem-fixes
myself_port_lo
new_cfg_compiles
new_hash
new_timers
old_mod_iface
orig
ported_ser_cvs_modules
post-zt
pre-bigbang
pre-zt
pre22
pre6-tcp4
pre6-tcp5-tm
pre_fixstats
pregpl
pure_ser_cvs_modules
rel_0_8_11_root
rel_0_9_0_root
ser_0-8-6-4
ser_081-plugins
ser_082
ser_0839_errors
ser_0_7
ser_0_8_10
ser_0_8_10_pre2
ser_0_8_10_pre3
ser_0_8_10_pre4
ser_0_8_10_pre5
ser_0_8_3_1
ser_0_8_3_2
ser_0_8_6-5-stable
ser_0_8_6-6-beer-release
ser_0_8_7-0-unstable
ser_0_8_8-final-cd-release
ser_0_8_9
ser_0_8_9-release
sip_083
sip_pre-plugin
sr_before_modules_merge
sr_simpleconfig
srv
tcp2
testing_0_8_12_root
tmp_pcl_tag_17368Js8
v03
v0_2
v0_8_11_pre9
v0_8_11dev34
v0_8_11pre29
v0_8_11pre29-prerelease
v0_8_11pre29-prerelease-cd
v0_8_11pre8
v0_8_12_t02_merged_w_v0_8_11pre35
v0_8_12dev-t03
v0_8_12dev_t05
v0_8_12dev_t13
v0_8_13dev-t16
v0_8_8
voicemail_0_1_0
wo_sp
sr_3.*
sr_3.1_freeze