A vulnerability was found in ARM Mbed TLS up to 2.7.16/2.16.7/2.23.x. It has been classified as critical. Affected is the function mbedtls_x509_crl_parse_der. Upgrading to version 2.7.17, 2.16.8 or 2.24.0 eliminates this vulnerability.
A vulnerability was found in TightVNC 1.3.10. It has been declared as critical. This vulnerability affects the function InitialiseRFBConnection of the file rfbproto.c of the component vncviewer. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
A vulnerability was found in PJSIP up to 2.11.1. It has been rated as critical. This issue affects an unknown code of the component RTP/RTCP. Applying the patch 22af44e68a0c7d190ac1e25075e1382f77e9397a is able to eliminate this problem. The bugfix is ready for download at github.com.
A vulnerability classified as critical has been found in PJSIP up to 2.11.1. Affected is an unknown code block of the component SIP Message. Applying the patch 077b465c33f0aec05a49cd2ca456f9a1b112e896 is able to eliminate this problem. The bugfix is ready for download at github.com.