[Frugalware-git] homepage-ng: FSA262-asterisk

Thu, 06 Sep 2007 11:16:50 -0700 

Git-Url: 
http://git.frugalware.org/gitweb/gitweb.cgi?p=homepage-ng.git;a=commitdiff;h=2594b0082bd5a89fa5610548433ace6f81e91fde

commit 2594b0082bd5a89fa5610548433ace6f81e91fde
Author: voroskoi <[EMAIL PROTECTED]>
Date:   Thu Sep 6 20:12:10 2007 +0200

FSA262-asterisk

diff --git a/frugalware/xml/security.xml b/frugalware/xml/security.xml
index 0edb5c1..448d594 100644
--- a/frugalware/xml/security.xml
+++ b/frugalware/xml/security.xml
@@ -27,6 +27,22 @@

<fsas>
<fsa>
+               <id>262</id>
+               <date>2007-09-06</date>
+               <author>voroskoi</author>
+               <package>asterisk</package>
+               <vulnerable>1.4.8-1terminus1</vulnerable>
+               <unaffected>1.4.11-1terminus1</unaffected>
+               <bts>http://bugs.frugalware.org/task/2328</bts>
+               <cve>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4103
+                       
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4280
+                       
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4455</cve>
+               <desc>Three vulnerabilities has been reported in Asterisk, 
which can be exploited by malicious people to cause a DoS (Denial of Service).
+                       1) The vulnerability is caused due to the IAX2 Channel 
Driver improperly processing "NEW" packets. This can be exploited to allocate 
resources that are never freed by sending multiple "NEW" packets for valid 
extensions to the server. Successful exploitation results in a DoS, but 
requires that the IAX2 Channel Driver is configured to allow unauthenticated 
calls.
+                       2) The vulnerability is caused due to the Skinny 
channel driver (chan_skinny) improperly processing packets. This can be 
exploited to crash the application by sending a "CAPABILITIES_RES_MESSAGE" 
packet with the capabilities count greater than the total number of items in 
the "capabilities_res_message" array.
+                       3) The vulnerability is caused due to the SIP Dialog 
History of SIP channel driver (chan_sip) recording all history items (88 bytes 
per item) in memory. This can be exploited to cause a DoS due to memory 
exhaustion by causing a high amount of logged items.</desc>
+       </fsa>
+       <fsa>
<id>261</id>
<date>2007-09-06</date>
<author>voroskoi</author>
_______________________________________________
Frugalware-git mailing list
[email protected]
http://frugalware.org/mailman/listinfo/frugalware-git

Reply via email to