Описание
Asterisk Open Source 11.x before 11.12.1 and 12.x before 12.5.1 and Certified Asterisk 11.6 before 11.6-cert6, when using the res_fax_spandsp module, allows remote authenticated users to cause a denial of service (crash) via an out of call message, which is not properly handled in the ReceiveFax dialplan application.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 1:13.0.0~dfsg-2ubuntu1 |
| bionic | not-affected | 1:13.0.0~dfsg-2ubuntu1 |
| cosmic | not-affected | 1:13.0.0~dfsg-2ubuntu1 |
| devel | not-affected | 1:13.0.0~dfsg-2ubuntu1 |
| disco | not-affected | 1:13.0.0~dfsg-2ubuntu1 |
| esm-apps/bionic | not-affected | 1:13.0.0~dfsg-2ubuntu1 |
| esm-apps/xenial | not-affected | 1:13.0.0~dfsg-2ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needed] |
| lucid | ignored | end of life |
| precise | ignored | end of life |
Показывать по
EPSS
4 Medium
CVSS2
Связанные уязвимости
Asterisk Open Source 11.x before 11.12.1 and 12.x before 12.5.1 and Certified Asterisk 11.6 before 11.6-cert6, when using the res_fax_spandsp module, allows remote authenticated users to cause a denial of service (crash) via an out of call message, which is not properly handled in the ReceiveFax dialplan application.
Asterisk Open Source 11.x before 11.12.1 and 12.x before 12.5.1 and Ce ...
Asterisk Open Source 11.x before 11.12.1 and 12.x before 12.5.1 and Certified Asterisk 11.6 before 11.6-cert6, when using the res_fax_spandsp module, allows remote authenticated users to cause a denial of service (crash) via an out of call message, which is not properly handled in the ReceiveFax dialplan application.
EPSS
4 Medium
CVSS2