CVE-2026-26203

Name of the Vulnerable Software and Affected Versions PJSIP versions prior to 2.17

Description PJSIP, a multimedia communication library, contains a heap buffer underflow issue in its H.264 packetizer. This occurs when processing H.264 bitstreams lacking NAL unit start codes, leading to unchecked pointer arithmetic and potential memory access outside the allocated buffer. Exploitation of this issue, through malformed H.264 video sent over a network, can result in crashes or code execution.

Recommendations Upgrade to version 2.17 or later.