FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-19 20:48:44 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
b330db5f-7225-11eb-8386-001999f8d30b	asterisk -- Remote crash in res_pjsip_diversion The Asterisk project reports: If a registered user is tricked into dialing a malicious number that sends lots of 181 responses to Asterisk, each one will cause a 181 to be sent back to the original caller with an increasing number of entries in the "Supported" header. Eventually the number of entries in the header exceeds the size of the entry array and causes a crash. Discovery 2021-01-04 Entry 2021-02-18 asterisk13 ge 13.38.1 lt 13.38.2 asterisk16 ge 16.15.1 lt 16.16.1 asterisk18 ge 18.1.1 lt 18.2.1 CVE-2020-35776 https://downloads.asterisk.org/pub/security/AST-2021-001.html

VuXML ID

Description

b330db5f-7225-11eb-8386-001999f8d30b

asterisk -- Remote crash in res_pjsip_diversion

The Asterisk project reports:

If a registered user is tricked into dialing a malicious number that sends lots of 181 responses to Asterisk, each one will cause a 181 to be sent back to the original caller with an increasing number of entries in the "Supported" header. Eventually the number of entries in the header exceeds the size of the entry array and causes a crash.

Discovery 2021-01-04
Entry 2021-02-18
asterisk13

ge 13.38.1 lt 13.38.2

asterisk16

ge 16.15.1 lt 16.16.1

asterisk18

ge 18.1.1 lt 18.2.1

CVE-2020-35776
https://downloads.asterisk.org/pub/security/AST-2021-001.html