[OpenSIPS-Devel] [OpenSIPS/opensips] 194acb: proto_hep: validate HEPv3 chunk lengths
Răzvan Crainea
noreply at github.com
Tue May 19 15:43:47 UTC 2026
Branch: refs/heads/master
Home: https://github.com/OpenSIPS/opensips
Commit: 194acbb2b2c2179778aa7bf45c8504bf22c00c44
https://github.com/OpenSIPS/opensips/commit/194acbb2b2c2179778aa7bf45c8504bf22c00c44
Author: Razvan Crainea <razvan at opensips.org>
Date: 2026-05-19 (Tue, 19 May 2026)
Changed paths:
M modules/proto_hep/hep.c
Log Message:
-----------
proto_hep: validate HEPv3 chunk lengths
Reject malformed HEPv3 packet and chunk lengths before parsing
chunk-specific data. This prevents zero-length chunks from stalling the
parser loop and avoids length underflow while walking the advertised
packet body.
Reported-by: Haruto Kimura (Stella)
Commit: d15a285888e7d2fde6015989178482d59de116b3
https://github.com/OpenSIPS/opensips/commit/d15a285888e7d2fde6015989178482d59de116b3
Author: Razvan Crainea <razvan at opensips.org>
Date: 2026-05-19 (Tue, 19 May 2026)
Changed paths:
M modules/proto_hep/hep.c
M modules/proto_hep/proto_hep.c
Log Message:
-----------
proto_hep: reject HEPv3 frames without payload
Treat HEPv3 packets without a payload chunk as malformed before
callbacks or SIP message parsing can consume the zero-initialized
payload pointer and length. Also route UDP unpacking failures through
the existing cleanup path.
Reported-by: Haruto Kimura (Stella)
Commit: c9d8b5a43f3595ea74bfd7cd74cc97fb0688e1b4
https://github.com/OpenSIPS/opensips/commit/c9d8b5a43f3595ea74bfd7cd74cc97fb0688e1b4
Author: Razvan Crainea <razvan at opensips.org>
Date: 2026-05-19 (Tue, 19 May 2026)
Changed paths:
M modules/rr/loose.c
Log Message:
-----------
rr: bound maddr URI construction
Reported-by: Haruto Kimura (Stella)
Commit: 2c633f1f1b78b89e75e0c6bbcd69236f1c2fa5ce
https://github.com/OpenSIPS/opensips/commit/2c633f1f1b78b89e75e0c6bbcd69236f1c2fa5ce
Author: Razvan Crainea <razvan at opensips.org>
Date: 2026-05-19 (Tue, 19 May 2026)
Changed paths:
M modules/topology_hiding/topo_hiding_logic.c
Log Message:
-----------
topology_hiding: bound encoded contact lengths
Reported-by: Haruto Kimura (Stella)
Commit: 824f9a382375083e8e21615c92267a37c66d3f18
https://github.com/OpenSIPS/opensips/commit/824f9a382375083e8e21615c92267a37c66d3f18
Author: Razvan Crainea <razvan at opensips.org>
Date: 2026-05-19 (Tue, 19 May 2026)
Changed paths:
M modules/b2b_entities/dlg.c
Log Message:
-----------
b2b_entities: bound generated RAck headers
Reported-by: Haruto Kimura (Stella)
Commit: 850f3f8302a0086b9ccaaaab5e52f85cc34043e1
https://github.com/OpenSIPS/opensips/commit/850f3f8302a0086b9ccaaaab5e52f85cc34043e1
Author: Razvan Crainea <razvan at opensips.org>
Date: 2026-05-19 (Tue, 19 May 2026)
Changed paths:
M modules/b2b_logic/logic.c
Log Message:
-----------
b2b_logic: stop oversized Replaces rewrite
Reported-by: Haruto Kimura (Stella)
Commit: d2e35628f07124c1f8b9c57ee152e7a8f2f041a0
https://github.com/OpenSIPS/opensips/commit/d2e35628f07124c1f8b9c57ee152e7a8f2f041a0
Author: Razvan Crainea <razvan at opensips.org>
Date: 2026-05-19 (Tue, 19 May 2026)
Changed paths:
M modules/clusterer/topology.c
Log Message:
-----------
clusterer: bound topology packet counts
Reported-by: Haruto Kimura (Stella)
Commit: 9c54a4bc88fd1797e7607521defd8b53ed97f0c6
https://github.com/OpenSIPS/opensips/commit/9c54a4bc88fd1797e7607521defd8b53ed97f0c6
Author: Razvan Crainea <razvan at opensips.org>
Date: 2026-05-19 (Tue, 19 May 2026)
Changed paths:
M modules/mid_registrar/gruu.c
M modules/mid_registrar/save.c
M modules/registrar/reply.c
Log Message:
-----------
registrar: dinamically grow temporary GRUU buffer
Reported-by: Haruto Kimura (Stella)
Commit: df02c85e3e0d14eaa8c0fb9c75c5f422a60bf1ae
https://github.com/OpenSIPS/opensips/commit/df02c85e3e0d14eaa8c0fb9c75c5f422a60bf1ae
Author: Razvan Crainea <razvan at opensips.org>
Date: 2026-05-19 (Tue, 19 May 2026)
Changed paths:
M modules/aaa_diameter/app_opensips/app_opensips.c
Log Message:
-----------
aaa_diameter: bound accounting AVP collection
Reported-by: Haruto Kimura (Stella)
Commit: 9343acf5995f813ac199aa707ccd5bcd6263761b
https://github.com/OpenSIPS/opensips/commit/9343acf5995f813ac199aa707ccd5bcd6263761b
Author: Razvan Crainea <razvan at opensips.org>
Date: 2026-05-19 (Tue, 19 May 2026)
Changed paths:
M sdp_ops.c
Log Message:
-----------
sdp: bound parsed SDP line count
Reported-by: Haruto Kimura (Stella)
Commit: c448b9065408fdc1ed00f82c683a45d83c54a4e7
https://github.com/OpenSIPS/opensips/commit/c448b9065408fdc1ed00f82c683a45d83c54a4e7
Author: Razvan Crainea <razvan at opensips.org>
Date: 2026-05-19 (Tue, 19 May 2026)
Changed paths:
M modules/httpd/httpd_proc.c
M modules/pi_http/http_fnc.c
Log Message:
-----------
pi_http: avoid POST argument OOB access
Reported-by: Haruto Kimura (Stella)
Commit: dbd97221f2e2557c17519e9fbec640ccb17e3086
https://github.com/OpenSIPS/opensips/commit/dbd97221f2e2557c17519e9fbec640ccb17e3086
Author: Razvan Crainea <razvan at opensips.org>
Date: 2026-05-19 (Tue, 19 May 2026)
Changed paths:
M bin_interface.c
Log Message:
-----------
bin: validate received packet bounds
Reported-by: Haruto Kimura (Stella)
Commit: aac00856a5c1b0f54b528263cbfbdc3a03024b4f
https://github.com/OpenSIPS/opensips/commit/aac00856a5c1b0f54b528263cbfbdc3a03024b4f
Author: Razvan Crainea <razvan at opensips.org>
Date: 2026-05-19 (Tue, 19 May 2026)
Changed paths:
M modules/usrloc/urecord.c
Log Message:
-----------
usrloc: fix cachedb contact match key size
Reported-by: Haruto Kimura (Stella)
Commit: 4f04cf4cb2a16c6766268ad0c68ac5ebf87e2e32
https://github.com/OpenSIPS/opensips/commit/4f04cf4cb2a16c6766268ad0c68ac5ebf87e2e32
Author: Razvan Crainea <razvan at opensips.org>
Date: 2026-05-19 (Tue, 19 May 2026)
Changed paths:
M modules/proto_smpp/proto_smpp.c
M modules/proto_smpp/smpp.c
M modules/proto_smpp/utils.c
Log Message:
-----------
proto_smpp: harden SMPP string bounds
Reported-by: Haruto Kimura (Stella)
Reported-by: jming912
Fixes #3847
Fixes #3848
Commit: e78608619b9ebe7454e0c9ce43e5d56762f9c47a
https://github.com/OpenSIPS/opensips/commit/e78608619b9ebe7454e0c9ce43e5d56762f9c47a
Author: Razvan Crainea <razvan at opensips.org>
Date: 2026-05-19 (Tue, 19 May 2026)
Changed paths:
M modules/compression/compression.c
M modules/compression/gz_helpers.c
Log Message:
-----------
compression: fix decompression bounds checks
Reported-by: Haruto Kimura (Stella)
Compare: https://github.com/OpenSIPS/opensips/compare/d016658049fe...e78608619b9e
To unsubscribe from these emails, change your notification settings at https://github.com/OpenSIPS/opensips/settings/notifications
More information about the Devel
mailing list