Jannik<p>The mobile core team at <span class="h-card" translate="no"><a href="https://sipgate.social/@sipgate" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>sipgate</span></a></span> has disclosed a <a href="https://chaos.social/tags/SIP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SIP</span></a> parsing bug in <a href="https://chaos.social/tags/mediatek" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>mediatek</span></a>'s <a href="https://chaos.social/tags/VoLTE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VoLTE</span></a>/ <a href="https://chaos.social/tags/VoWifi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VoWifi</span></a> stack which leads to a null-pointer-dereference and ultimately Denial of Service of VoLTE telephony for the affected devices. Around 40 baseband chips were affected which were deployed to over 1000 devices since 2017.</p><p><a href="https://www.sipgate.de/blog/sipgate-discovers-null-pointer-dereference-in-mediatek-volte-stack-firmware" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">sipgate.de/blog/sipgate-discov</span><span class="invisible">ers-null-pointer-dereference-in-mediatek-volte-stack-firmware</span></a></p><p>Thanks to <span class="h-card" translate="no"><a href="https://mastodon.social/@hendrikkiel" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>hendrikkiel</span></a></span> for the great cooperation!</p>