Description

PJSIP is a free and open source multimedia communication library written in C. In 2.16 and earlier, there is an integer overflow in media stream buffer size calculation when processing SDP with asymmetric ptime configuration. The overflow may result in an undersized buffer allocation, which can lead to unexpected application termination or memory corruption This vulnerability is fixed in 2.17.

INFO

Published Date :

2026-04-24T18:40:08.349Z

Last Modified :

2026-04-27T13:35:20.030Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2026-41416 vulnerability.

Vendors Products
Pjsip
  • Pjproject
Teluu
  • Pjsip
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-41416.

URL Resource
https://github.com/pjsip/pjproject/commit/66fe416c96e957417621b7be16e9e587d159f9bb cve-icon cve-icon
https://github.com/pjsip/pjproject/security/advisories/GHSA-f33g-8hjq-62xr cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability