CVE-2022-24793

Name of the Vulnerable Software and Affected Versions PJSIP versions 2.12 and prior

Description The issue is related to a buffer overflow vulnerability in the PJSIP library's DNS resolution implementation. This vulnerability can be exploited by a remote attacker to execute arbitrary code on the target system. The vulnerability occurs due to a lack of size checking on input data when processing DNS packets, which can lead to a heap buffer overflow.

Recommendations For PJSIP versions 2.12 and prior, consider disabling DNS resolution in PJSIP config by setting nameserver count to zero as a temporary workaround. Update to a version that includes the patch available in the master branch of the pjsip/pjproject GitHub repository. Alternatively, use an external resolver instead of the built-in PJSIP DNS resolution to minimize the risk of exploitation.