Overview
CVE-2025-65102 describes a vulnerability found in PJSIP, a free and open-source multimedia communication library. Specifically, this issue affects users employing the Opus audio codec in the receiving direction. The vulnerability lies within the Opus PLC (Packet Loss Concealment) implementation and can potentially cause unexpected application termination due to a memory overwrite. The vulnerability has been addressed in PJSIP version 2.16.
Technical Details
The vulnerability occurs because the Opus PLC may zero-fill the input frame based on the decoder ptime (packet time). However, the actual input frame length, which is derived from the stream ptime, might be shorter than the zero-filled length. This discrepancy can lead to writing beyond the bounds of the allocated memory buffer, resulting in a memory overwrite.
CVSS Analysis
As of the current information available, a CVSS score is not assigned to CVE-2025-65102. This may be because the severity is still being assessed or due to limitations in impact. Further analysis and evaluation are required to determine the definitive CVSS score and base metrics. The advisory provided no CVSS information.
Possible Impact
The most significant potential impact of this vulnerability is unexpected application termination. A memory overwrite can corrupt critical data structures within the application, leading to instability and crashes. While the direct impact might be limited to denial of service, depending on the application’s functionality and the attacker’s capabilities, it could potentially be leveraged for more severe attacks if combined with other vulnerabilities.
Mitigation and Patch Steps
The primary mitigation for CVE-2025-65102 is to upgrade to PJSIP version 2.16 or later. This version includes the necessary patch to address the vulnerability in the Opus PLC implementation. If upgrading is not immediately feasible, consider temporarily disabling the Opus codec or implementing input validation measures to ensure the input frame length matches the expected size based on the stream ptime. However, these are only temporary workarounds and a full upgrade is strongly recommended.
