Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2022-42705HistoryDec 05, 2022 - 9:15 p.m.
CVE-2022-42705
2022-12-0521:15:10
Debian Security Bug Tracker
security-tracker.debian.org
16
0.002 Low
EPSS
Percentile
58.8%
A use-after-free in res_pjsip_pubsub.c in Sangoma Asterisk 16.28, 18.14, 19.6, and certified/18.9-cert2 may allow a remote authenticated attacker to crash Asterisk (denial of service) by performing activity on a subscription via a reliable transport at the same time that Asterisk is also performing activity on that subscription.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | asterisk | < 1:16.28.0~dfsg-0+deb11u2 | asterisk_1:16.28.0~dfsg-0+deb11u2_all.deb |
| Debian | 10 | all | asterisk | < 1:16.28.0~dfsg-0+deb10u2 | asterisk_1:16.28.0~dfsg-0+deb10u2_all.deb |
| Debian | 999 | all | asterisk | < 1:20.0.1~dfsg+~cs6.12.40431414-1 | asterisk_1:20.0.1~dfsg+~cs6.12.40431414-1_all.deb |
Related
osv
osv
CVE-2022-42705
2022-12-05 21:15:10
asterisk - security update
2023-02-22 00:00:00
asterisk - security update
2023-02-23 00:00:00
cvelist
cvelist
CVE-2022-42705
2022-12-05 00:00:00
prion
prion
Design/Logic Flaw
2022-12-05 21:15:00
alpinelinux
alpinelinux
CVE-2022-42705
2022-12-05 21:15:10
veracode
veracode
Denial Of Service (DoS)
2022-12-13 23:44:04
cve
cve
CVE-2022-42705
2022-12-05 21:15:10
ubuntucve
ubuntucve
CVE-2022-42705
2022-12-05 00:00:00
nessus
nessus
FreeBSD : Asterisk -- multiple vulnerabilities (8dd438ed-a338-11ed-b48b-589cfc0f81b0)
2023-02-02 00:00:00
Debian DLA-3335-1 : asterisk - LTS security update
2023-02-24 00:00:00
Debian DSA-5358-1 : asterisk - security update
2023-02-24 00:00:00
freebsd
freebsd
Asterisk -- multiple vulnerabilities
2022-12-01 00:00:00
openvas
openvas
Asterisk Multiple Vulnerabilities (AST-2022-007, AST-2022-008, AST-2022-009)
2022-12-02 00:00:00
Debian: Security Advisory (DSA-5358-1)
2023-02-24 00:00:00
Debian: Security Advisory (DLA-3335-1)
2023-02-23 00:00:00