PJSIP Opus, Speex, and Silk Codec Stack Buffer Overflow Vulnerability

Vulnerability

A stack buffer overflow vulnerability has been identified in the PJSIP multimedia communication library, specifically in versions prior to 2.17. The issue arises in the pjmedia-codec component when parsing RTP payloads that contain more frames than the allocated buffer can accommodate. This flaw has been confirmed with AddressSanitizer, indicating a critical security risk.

Impact

Exploitation of this vulnerability leads to a stack buffer overflow, allowing for potential arbitrary code execution or causing a program crash. This vulnerability is particularly critical as it occurs in the context of media processing, where such buffer overflows can often be exploited to execute malicious code.

Remediation

Users can upgrade to PJSIP version 2.17 or later to address this vulnerability. The patch is available in the PJSIP GitHub repository.

Added: Mar 6, 2026, 7:21 AM
Updated: Mar 6, 2026, 7:21 AM

Vulnerability Rating

Custom Algorithm
spread
9.8
impact
7.5
exploitability
7.7
remediation
7.7
relevance
2.3
threat
3.2
urgency
2.9
incentive
4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.