CVE-2018-17281

Related Files

Gentoo Linux Security Advisory 201811-11

Posted Nov 24, 2018

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201811-11 - Multiple vulnerabilities have been found in Asterisk, the worst of which could result in a Denial of Service condition. Versions less than 13.23.1 are affected.

tags | advisory, denial of service, vulnerability

systems | linux, gentoo

advisories | CVE-2017-16671, CVE-2017-16672, CVE-2017-17850, CVE-2018-12227, CVE-2018-17281

SHA-256 | d200caeb885cb10d417f6d8764dcef474cd93f894dd14f209e91124a44865450

Download | Favorite | View

Asterisk Project Security Advisory - AST-2018-010

Posted Nov 15, 2018

Authored by Jan Hoffmann | Site asterisk.org

Asterisk Project Security Advisory - There is a buffer overflow vulnerability in dns_srv and dns_naptr functions of Asterisk that allows an attacker to crash Asterisk via a specially crafted DNS SRV or NAPTR response. The attacker's request causes Asterisk to segfault and crash.

tags | advisory, overflow

advisories | CVE-2018-17281

SHA-256 | a56d17dfbfb2b6944825ab3cff3e105b1980de74f095cb346ae3206c73979820

Download | Favorite | View

Asterisk Project Security Advisory - AST-2018-009

Posted Sep 20, 2018

Authored by Richard Mudgett | Site asterisk.org

Asterisk Project Security Advisory - There is a stack overflow vulnerability in the res_http_websocket.so module of Asterisk that allows an attacker to crash Asterisk via a specially crafted HTTP request to upgrade the connection to a websocket. The attacker's request causes Asterisk to run out of stack space and crash.

tags | advisory, web, overflow

advisories | CVE-2018-17281

SHA-256 | 999593047c91cf17e94b5126542d0b61c193e900ccb49dfceb842eb260de225f

Download | Favorite | View