VYPR
High severity7.5NVD Advisory· Published Apr 24, 2026· Updated Apr 28, 2026

CVE-2026-41416

CVE-2026-41416

Description

PJSIP is a free and open source multimedia communication library written in C. In 2.16 and earlier, there is an integer overflow in media stream buffer size calculation when processing SDP with asymmetric ptime configuration. The overflow may result in an undersized buffer allocation, which can lead to unexpected application termination or memory corruption This vulnerability is fixed in 2.17.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Pjsip/Pjsip2 versions
    cpe:2.3:a:teluu:pjsip:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:teluu:pjsip:*:*:*:*:*:*:*:*range: <2.17
    • (no CPE)range: <=2.16

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.