Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2018-19278HistoryNov 14, 2018 - 8:29 p.m.
CVE-2018-19278
2018-11-1420:29:00
Debian Security Bug Tracker
security-tracker.debian.org
6
0.005 Low
EPSS
Percentile
75.5%
Buffer overflow in DNS SRV and NAPTR lookups in Digium Asterisk 15.x before 15.6.2 and 16.x before 16.0.1 allows remote attackers to crash Asterisk via a specially crafted DNS SRV or NAPTR response, because a buffer size is supposed to match an expanded length but actually matches a compressed length.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | asterisk | < 1:16.28.0~dfsg-0+deb11u3 | asterisk_1:16.28.0~dfsg-0+deb11u3_all.deb |
| Debian | 10 | all | asterisk | < 1:16.2.1~dfsg-1+deb10u2 | asterisk_1:16.2.1~dfsg-1+deb10u2_all.deb |
| Debian | 999 | all | asterisk | < 1:20.6.0~dfsg+~cs6.13.40431414-2 | asterisk_1:20.6.0~dfsg+~cs6.13.40431414-2_all.deb |
Related
openvas
openvas
Asterisk DoS Vulnerability (AST-2018-010)
2018-11-15 00:00:00
osv
osv
CVE-2018-19278
2018-11-14 20:29:00
cve
cve
CVE-2018-19278
2018-11-14 20:29:00
prion
prion
Buffer overflow
2018-11-14 20:29:00
nessus
nessus
Asterisk 15.x < 15.6.2 / 16.x < 16.0.1 DoS (AST-2018-010)
2018-11-15 00:00:00
cvelist
cvelist
CVE-2018-19278
2022-10-03 16:21:56
alpinelinux
alpinelinux
CVE-2018-19278
2018-11-14 20:29:00