4 matches found
Fedora Update for asterisk FEDORA-2018-cf1dd2166b
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 27 : asterisk (2017-41242dfe10)
Update to upstream 14.7.5 release for AST-2017-014/CVE-2017-17850 security issue Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...
CVE-2017-17850
An issue was discovered in Asterisk 13.18.4 and older, 14.7.4 and older, 15.1.4 and older, and 13.18-cert1 and older. A select set of SIP messages create a dialog in Asterisk. Those SIP messages must contain a contact header. For those messages, if the header was not present and the PJSIP channel...
CVE-2017-17850
CVE-2017-17850 affects Asterisk 13.18.4 and older, 14.7.4 and older, 15.1.4 and older, and 13.18-cert1 and older. If a SIP request creates a dialog and the SIP contact header is missing while using the PJSIP channel driver, Asterisk may crash. Authentication reduces risk by requiring prior author...