The PJSIP Channel Driver in Asterisk Open Source before 12.3.1 allows remote attackers to cause a denial of service (deadlock) by terminating a subscription request before it is complete, which triggers a SIP transaction timeout.
CPE | Name | Operator | Version |
---|---|---|---|
asterisk | eq | 12.0.0 | |
asterisk | eq | 12.3.0 rc2 | |
asterisk | eq | 12.1.0 rc3 | |
asterisk | eq | 12.1.1 | |
asterisk | eq | 12.2.0 rc3 | |
asterisk | eq | 12.1.0 rc1 | |
asterisk | eq | 12.2.0 rc2 | |
asterisk | le | 12.3.0 | |
asterisk | eq | 12.3.0 rc1 | |
asterisk | eq | 12.1.0 |