Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2017-04-13	CVE-2016-10324	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in GNU Osip 4.1.0 In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the osip_clrncpy() function defined in osipparser2/osip_port.c. network low complexity gnu CWE-119 critical	9.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.