CNNVD-202511-2428 Information

CNNVD ID

CNNVD-202511-2428

Related CVE

CVE-2025-65102

• CNNVD Published: 2025-11-21

Description (Chinese)

PJSIP是pjsip开源的一个免费和开源的多媒体通信库，用C语言编写，实现基于标准的协议，如SIP, SDP, RTP, STUN, TURN，和ICE。 PJSIP 2.16之前版本存在安全漏洞，该漏洞源于Opus PLC处理不当，可能导致应用程序意外终止。

Description (English)

PJSIP is a free and open multimedia repository of pjsip open source, written in C language, to achieve standard-based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. There was a security loophole in the previous PJSIP 2.16 version, which stemmed from the inappropriate handling of the Opus PLC, which could lead to an unexpected termination of the application.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

pjsip

Published

2025-11-21

Last Modified

2026-02-24

References

https://github.com/pjsip/pjproject/commit/6e9bd2e7d25bba26f852771b40693f45da14fa8f https://github.com/pjsip/pjproject/security/advisories/GHSA-w5vr-39x7-h8g5

Patch

https://github.com/pjsip/pjproject/releases