CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2023/07/08 01:31:33
Modified files:
telephony/pjsua: Makefile distinfo
Log message:
update to pjsip-2.13.1
- Possible buffer overread when parsing a specially crafted STUN message
with unknown attribute. The vulnerability affects applications that uses
STUN including PJNATH and PJSUA-LIB.
- Heap buffer overflow when parsing DNS packet. Affects applications
that uses PJSIP DNS resolver, e.g: in PJSUA/PJSUA2 configured via
pjsua_config.nameserver or UaConfig.nameserver. If this is not
configured the library will use the OS resolver so is unaffected.
