The issue does not exist in any release of 5.6.x. The issue was fixed in 5.4.2.
—fred > On Mar 28, 2023, at 11:03 AM, Kaufman <bkauf...@bcmone.com> wrote: > > Sorry - for clarification, this issue is or is not fixed in Kamailio v5.6.4? > > >> The latest stable branch is 5.6, with v5.6.4 released out of it. > > > Kaufman > > > > -----Original Message----- > From: Olle E. Johansson <o...@edvina.net> > Sent: Tuesday, March 28, 2023 9:47 AM > To: sr-users@lists.kamailio.org > Subject: [SR-Users] Three year old issue with a new CVE vulnerability report > being reported > > CAUTION: This email originated from outside the organization. Do not click > links or open attachments unless you recognize the sender and know the > content is safe. > > > Hi Kamailians! > > A new CVE with a critical severity level was published recently for an almost > three year old bug, which was also fixed and released three years ago > (CVE-2020-27507). > > The issue was fixed in Kamailio 5.4.2 and is not present in newer releases. > > The Kamailio project has unfortunately not been involved in the CVE process > or been informed about this old issue being published at this time. > > We take vulnerability handling seriously and our process is documented at: > https://nam11.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.kamailio.org%2Fwikidocs%2Fsecurity%2Fpolicy%2F&data=05%7C01%7Cbkaufman%40bcmone.com%7C125de78e21734f4c7b6f08db2f9c2a50%7Cafc1818e7b6848568913201b9396c4fc%7C1%7C0%7C638156120016691188%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=31Lfy%2BGx4CJCxBlhMsjHbuXDuUNhkPikwgMMMukR0Cs%3D&reserved=0 > > The latest stable branch is 5.6, with v5.6.4 released out of it. > > Reference: > > https://nam11.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcve.mitre.org%2Fcgi-bin%2Fcvename.cgi%3Fname%3D2020-27507&data=05%7C01%7Cbkaufman%40bcmone.com%7C125de78e21734f4c7b6f08db2f9c2a50%7Cafc1818e7b6848568913201b9396c4fc%7C1%7C0%7C638156120016691188%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=VqjYleZzphNmTFlEdvLbKR%2B%2BZDiTFnJOtG%2FrSz0N94A%3D&reserved=0 > > Best regards and thanks for flying Kamailio! > > The Kamailio dev team > > through > /Olle > __________________________________________________________ > Kamailio - Users Mailing List - Non Commercial Discussions To unsubscribe > send an email to sr-users-le...@lists.kamailio.org > Important: keep the mailing list in the recipients, do not reply only to the > sender! > Edit mailing list options or unsubscribe: > __________________________________________________________ > Kamailio - Users Mailing List - Non Commercial Discussions > To unsubscribe send an email to sr-users-le...@lists.kamailio.org > Important: keep the mailing list in the recipients, do not reply only to the > sender! > Edit mailing list options or unsubscribe: __________________________________________________________ Kamailio - Users Mailing List - Non Commercial Discussions To unsubscribe send an email to sr-users-le...@lists.kamailio.org Important: keep the mailing list in the recipients, do not reply only to the sender! Edit mailing list options or unsubscribe: