Stay Secure with the Latest Linux Advisories

security advisorybuffer overflowcritical

Fedora 7: 2008-3508 Critical Exploit In sipp Buffer Overflow

.Bug #444728 - CVE-2008-1959 SIPp stack based buffer overflow in get_remote_video_port_media() https://bugzilla.redhat.com/show_bug.cgi?id=444728. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2008-3508 2008-05-09 22:25:09 --------------------------------------------------------------------------------Name : sipp Product : Fedora 7 Version : 3.1 Release : 1.fc7 URL : Summary : SIP test tool / traffic generator Description : SIPp is a free Open Source test tool / traffic generator for the SIP protocol. It includes a few basic SipStone user agent scenarios (UAC and UAS) and establishes and releases multiple calls with the INVITE and BYE methods. It can also reads custom XML scenario files describing from very simple to complex call flows. It features the dynamic display of statistics about running tests (call rate, round trip delay, and message statistics), periodic CSV statistics dumps, TCP and UDP over multiple sockets or multiplexed with retransmission management and dynamically adjustable call rates. --------------------------------------------------------------------------------Update Information: * CVE-2008-1959 * Ver. 3.1. --------------------------------------------------------------------------------References: [ 1 ] Bug #444728 - CVE-2008-1959 SIPp stack based buffer overflow in get_remote_video_port_media() https://bugzilla.redhat.com/show_bug.cgi?id=444728 --------------------------------------------------------------------------------This update can be installed with the "yum" update program. Use su -c 'yum update sipp' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ Fedora-package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Stay informed about the latest Fedora release that tackles critical vulnerabilities in SIPp, focusing on buffer overflow concerns to enhance overall system integrity.. Fedora Update, sipp security, buffer overflow fix, Open Source SIP tool. . Severity: Critical. LinuxSecurity.com Team

May 10, 2008 •Critical Fedora