CVE-2014-10375

Name of the Vulnerable Software and Affected Versions eXosip versions prior to 5.0.0

Description The issue arises from the handle messages function in eXtl tls.c mishandling a negative value in a content-length header. This can lead to potential security issues.

Recommendations For versions prior to 5.0.0, update to version 5.0.0 or later to resolve the issue. As a temporary workaround, consider restricting the handling of negative content-length headers in the handle messages function until a patch is available.