Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.3
PJSIP Library Exposes Sensitive Information to Unauthenticated Users
UBUNTU-CVE-2026-29068
Summary
PJSIP, a library used for multimedia communication, has a weakness that allows unauthorized access to sensitive data. This could allow attackers to obtain confidential information, potentially leading to data breaches. To protect your system, update to the latest version of PJSIP or consider alternative libraries that have this vulnerability addressed.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| canonical | pjproject | All versions | – |
| canonical | pjproject | All versions | – |
Original title
(PJSIP is a free and open source multimedia communication library writt ...)
Original description
(PJSIP is a free and open source multimedia communication library writt ...)
osv CVSS4.0
8.3
- https://ubuntu.com/security/CVE-2026-29068 Third Party Advisory
- https://www.cve.org/CVERecord?id=CVE-2026-29068 Third Party Advisory
- https://github.com/pjsip/pjproject/security/advisories/GHSA-pqww-jrxr-457f Third Party Advisory
- https://github.com/pjsip/pjproject/commit/6c9024511bf5307ff72efde1f90c9a2a226d89... Third Party Advisory
Published: 9 Mar 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026