CNNVD-202512-2771 Information

CNNVD ID

CNNVD-202512-2771

Related CVE

CVE-2025-68274

• CNNVD Published: 2025-12-16

Description (Chinese)

SIPGO是Emia个人开发者的一个用于在GO中编写快速SIP服务的SIP库。 SIPGO 0.3.0版本至1.0.0-alpha-1之前版本存在安全漏洞，该漏洞源于NewResponseFromRequest函数存在空指针取消引用，可能导致SIP应用程序崩溃。

Description (English)

SIPGO is a SIP library used by Emia personal developers to develop fast-track SIP services in GO. There is a security loophole in the SIPGO version 0.3.0 to 1.0.0-alpha-1, which stems from the empty pointer unreferenced in the NewResponseFromRequest function, which could cause the SIP application to collapse.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-12-16

Last Modified

2026-02-24

References

https://github.com/emiago/sipgo/commit/dc9669364a154ec6d134e542f6a63c31b5afe6e8 https://github.com/emiago/sipgo/security/advisories/GHSA-c623-f998-8hhv

Patch

https://github.com/emiago/sipgo/releases