CVE-2021-37706

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2021-37706
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-37706.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2021-37706
Downstream
Related
Published
2021-12-22T18:15:07.487Z
Modified
2026-03-15T22:37:47.495500Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In affected versions if the incoming STUN message contains an ERROR-CODE attribute, the header length is not checked before performing a subtraction operation, potentially resulting in an integer underflow scenario. This issue affects all users that use STUN. A malicious actor located within the victim’s network may forge and send a specially crafted UDP (STUN) message that could remotely execute arbitrary code on the victim’s machine. Users are advised to upgrade as soon as possible. There are no known workarounds.

References

Affected packages

Git / github.com/asterisk/asterisk

Affected ranges

Type
GIT
Repo
https://github.com/asterisk/asterisk
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
d436f568583184a13aa46349af5a3f0907087b44
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
d436f568583184a13aa46349af5a3f0907087b44
Introduced
a65908f83e2f17a3aca7eb39c8e06045aca02674
Fixed
c28961a7d88cf065f693d1ea412c3e2b35e6d18e
Introduced
2c1bba3cbec008c8ce35c78a2c79f9f207ea58bc
Fixed
4cf4f5f7076125bc649727540de5922c21e0558f
Introduced
de4f63b4824c91a0cd9f3d95f3b7923bec71960c
Fixed
7eb4edc725d6fa6877d88129d7bf99c0a1604de9
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
847f753c4eda5891c4fe77dd7d0341381cb84975
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "16.8.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "16.8.0"
        },
        {
            "introduced": "16.0.0"
        },
        {
            "fixed": "16.24.1"
        },
        {
            "introduced": "18.0.0"
        },
        {
            "fixed": "18.10.1"
        },
        {
            "introduced": "19.0.0"
        },
        {
            "fixed": "19.2.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "10.0"
        }
    ]
}
Type
GIT
Repo
https://github.com/pjsip/pjproject
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
513700f74787009241a11eda125284277f7dfc1c
Fixed
15663e3f37091069b8c98a7fce680dc04bc8e865
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.11.1"
        }
    ]
}

Affected versions

2.*
2.10
2.11
2.11.1

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-37706.json"
unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "16.8.0-cert1"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "16.8.0-cert10"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "16.8.0-cert11"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "16.8.0-cert12"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "16.8.0-cert2"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "16.8.0-cert3"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "16.8.0-cert4"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "16.8.0-cert5"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "16.8.0-cert6"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "16.8.0-cert7"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "16.8.0-cert8"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "16.8.0-cert9"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "9.0"
            }
        ]
    }
]
vanir_signatures 
[
    {
        "signature_version": "v1",
        "target": {
            "file": "pjnath/src/pjnath/stun_msg.c"
        },
        "source": "https://github.com/pjsip/pjproject/commit/15663e3f37091069b8c98a7fce680dc04bc8e865",
        "deprecated": false,
        "digest": {
            "line_hashes": [
                "286375471227338908900759340395951320869",
                "337170165584158815641361604078421931103",
                "218425442522531084557250897674746904437",
                "215575948014480304126719586812745130850"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2021-37706-6c9a95f2",
        "signature_type": "Line"
    },
    {
        "signature_version": "v1",
        "target": {
            "file": "pjnath/src/pjnath/stun_msg.c",
            "function": "decode_errcode_attr"
        },
        "source": "https://github.com/pjsip/pjproject/commit/15663e3f37091069b8c98a7fce680dc04bc8e865",
        "deprecated": false,
        "digest": {
            "function_hash": "166111760674862860056573304105766004106",
            "length": 452.0
        },
        "id": "CVE-2021-37706-9e426c0f",
        "signature_type": "Function"
    }
]