
<div dir="ltr">Hi,<div><br></div><div>I made an official version which includes the fix. </div><div><a href="http://ftp.gnu.org/gnu/osip/libosip2-5.3.1.tar.gz">http://ftp.gnu.org/gnu/osip/libosip2-5.3.1.tar.gz</a><br></div><div><br></div><div>Best Regards,</div><div>Aymeric</div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">Le mer. 12 oct. 2022 à 17:39, Salvatore Bonaccorso <<a href="mailto:carnil@debian.org">carnil@debian.org</a>> a écrit :<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">Source: libosip2<br>

Version: 5.3.0-2<br>

Severity: important<br>

Tags: security upstream<br>

Forwarded: <a href="https://savannah.gnu.org/bugs/?63103" rel="noreferrer" target="_blank">https://savannah.gnu.org/bugs/?63103</a><br>

X-Debbugs-Cc: <a href="mailto:carnil@debian.org" target="_blank">carnil@debian.org</a>, Debian Security Team <<a href="mailto:team@security.debian.org" target="_blank">team@security.debian.org</a>><br>

<br>

Hi,<br>

<br>

The following vulnerability was published for libosip2.<br>

<br>

CVE-2022-41550[0]:<br>

| GNU oSIP v5.3.0 was discovered to contain an integer overflow via the<br>

| component osip_body_parse_header.<br>

<br>

<br>

If you fix the vulnerability please also make sure to include the<br>

CVE (Common Vulnerabilities & Exposures) id in your changelog entry.<br>

<br>

For further information see:<br>

<br>

[0] <a href="https://security-tracker.debian.org/tracker/CVE-2022-41550" rel="noreferrer" target="_blank">https://security-tracker.debian.org/tracker/CVE-2022-41550</a><br>

    <a href="https://www.cve.org/CVERecord?id=CVE-2022-41550" rel="noreferrer" target="_blank">https://www.cve.org/CVERecord?id=CVE-2022-41550</a><br>

[1] <a href="https://savannah.gnu.org/bugs/?63103" rel="noreferrer" target="_blank">https://savannah.gnu.org/bugs/?63103</a><br>

<br>

Please adjust the affected versions in the BTS as needed.<br>

<br>

Regards,<br>

Salvatore<br>

<br>

</blockquote></div><br clear="all"><div><br></div>-- <br><div dir="ltr" class="gmail_signature"><img src="http://sip.antisip.com/am48.png">Antisip - <a href="http://www.antisip.com" target="_blank">http://www.antisip.com</a><br></div>