Unrated severityNVD Advisory· Published Mar 22, 2022· Updated Nov 4, 2025
Stack buffer overflow in pjproject
CVE-2022-24764
Description
PJSIP is a free and open source multimedia communication library written in C. Versions 2.12 and prior contain a stack buffer overflow vulnerability that affects PJSUA2 users or users that call the API pjmedia_sdp_print(), pjmedia_sdp_media_print(). Applications that do not use PJSUA2 and do not directly call pjmedia_sdp_print() or pjmedia_sdp_media_print() should not be affected. A patch is available on the master branch of the pjsip/pjproject GitHub repository. There are currently no known workarounds.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
7- security.gentoo.org/glsa/202210-37mitrevendor-advisory
- www.debian.org/security/2022/dsa-5285mitrevendor-advisory
- lists.debian.org/debian-lts-announce/2022/03/msg00035.htmlmitremailing-list
- lists.debian.org/debian-lts-announce/2022/11/msg00021.htmlmitremailing-list
- lists.debian.org/debian-lts-announce/2023/08/msg00038.htmlmitremailing-list
- github.com/pjsip/pjproject/commit/560a1346f87aabe126509bb24930106dea292b00mitre
- github.com/pjsip/pjproject/security/advisories/GHSA-f5qg-pqcg-765mmitre
News mentions
0No linked articles in our index yet.