FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
e9d2e981-a46d-11e9-bed9-001999f8d30b	asterisk -- Remote Crash Vulnerability in chan_sip channel driver The Asterisk project reports: When T.38 faxing is done in Asterisk a T.38 reinvite may be sent to an endpoint to switch it to T.38. If the endpoint responds with an improperly formatted SDP answer including both a T.38 UDPTL stream and an audio or video stream containing only codecs not allowed on the SIP peer or user a crash will occur. The code incorrectly assumes that there will be at least one common codec when T.38 is also in the SDP answer. Discovery 2019-06-28 Entry 2019-07-12 asterisk13 < 13.27.1 asterisk15 < 15.7.3 asterisk16 < 16.4.1 https://downloads.asterisk.org/pub/security/AST-2019-003.html CVE-2019-13161

VuXML ID

Description

e9d2e981-a46d-11e9-bed9-001999f8d30b

asterisk -- Remote Crash Vulnerability in chan_sip channel driver

The Asterisk project reports:

When T.38 faxing is done in Asterisk a T.38 reinvite may be sent to an endpoint to switch it to T.38. If the endpoint responds with an improperly formatted SDP answer including both a T.38 UDPTL stream and an audio or video stream containing only codecs not allowed on the SIP peer or user a crash will occur. The code incorrectly assumes that there will be at least one common codec when T.38 is also in the SDP answer.

Discovery 2019-06-28
Entry 2019-07-12
asterisk13

< 13.27.1

asterisk15

< 15.7.3

asterisk16

< 16.4.1

https://downloads.asterisk.org/pub/security/AST-2019-003.html
CVE-2019-13161