Thank you for your detailed response and for looking into this issue.
I appreciate you clarifying the origins of the code. Given your explanation, there was a
misunderstanding about the source of the code in question.
Unfortunately, I do not have a specific SIP request message that causes a crash on the
Kamailio. My report was primarily based on a static analysis tool, which flagged the
potential vulnerability due to similarities in the codebase. The issue I reported is based
on the presence of code in Kamailio that resembles the vulnerable code from OpenSIPS.
Thank you for your time and for maintaining the security and stability of the Kamailio
project.
--
Reply to this email directly or view it on GitHub:
https://github.com/kamailio/kamailio/issues/3911#issuecomment-2222112117
You are receiving this because you are subscribed to this thread.
Message ID: <kamailio/kamailio/issues/3911/2222112117(a)github.com>