CVE-2021-32686— Denial of Service in PJSIP
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-32686
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Denial of Service in PJSIP
Source: NVD (National Vulnerability Database)
Vulnerability Description
PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In PJSIP before version 2.11.1, there are a couple of issues found in the SSL socket. First, a race condition between callback and destroy, due to the accepted socket having no group lock. Second, the SSL socket parent/listener may get destroyed during handshake. Both issues were reported to happen intermittently in heavy load TLS connections. They cause a crash, resulting in a denial of service. These are fixed in version 2.11.1.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
使用共享资源的并发执行不恰当同步问题(竞争条件)
Source: NVD (National Vulnerability Database)
Vulnerability Title
PJSIP 竞争条件问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
PJSIP是一个免费和开源的多媒体通信库,用C语言编写,实现基于标准的协议,如SIP, SDP, RTP, STUN, TURN,和ICE。 PJSIP 中存在竞争条件问题漏洞。该漏洞源于网络系统或产品在运行过程中,并发代码需要互斥地访问共享资源时,对于并发访问的处理不当。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2021-32686
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2021-32686
请登录查看更多情报信息。
- https://www.debian.org/security/2021/dsa-4999vendor-advisory
- https://security.gentoo.org/glsa/202210-37vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2021-32686
IV. Related Vulnerabilities
Same product: pjproject
- CVE-2026-42225
GnuTLS backend silently skips certificate chain verification - CVE-2026-41416
PJSIP: Asymmetric ptime integer overflow in Media Stream - CVE-2026-41415
PJSIP: SIP Multipart CID URI Length Underflow - CVE-2026-40892
PJSIP: Stack buffer overflow in pjsip_auth_create_digest2() - CVE-2026-40614
PJSIP: Heap buffer overflow in Opus codec decoding
Same vendor: pjsip
- CVE-2026-42225
GnuTLS backend silently skips certificate chain verification - CVE-2026-41416
PJSIP: Asymmetric ptime integer overflow in Media Stream - CVE-2026-41415
PJSIP: SIP Multipart CID URI Length Underflow - CVE-2026-40892
PJSIP: Stack buffer overflow in pjsip_auth_create_digest2() - CVE-2026-40614
PJSIP: Heap buffer overflow in Opus codec decoding
V. Comments for CVE-2021-32686
No comments yet