Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2014-9374

Опубликовано: 12 дек. 2014
Источник: ubuntu
Приоритет: medium
CVSS2: 5

Описание

Double free vulnerability in the WebSocket Server (res_http_websocket module) in Asterisk Open Source 11.x before 11.14.2, 12.x before 12.7.2, and 13.x before 13.0.2 and Certified Asterisk 11.6 before 11.6-cert9 allows remote attackers to cause a denial of service (crash) by sending a zero length frame after a non-zero length frame.

РелизСтатусПримечание
artful

not-affected

1:13.1.0~dfsg-1ubuntu1
bionic

not-affected

1:13.1.0~dfsg-1ubuntu1
cosmic

not-affected

1:13.1.0~dfsg-1ubuntu1
devel

not-affected

1:13.1.0~dfsg-1ubuntu1
disco

not-affected

1:13.1.0~dfsg-1ubuntu1
esm-apps/bionic

not-affected

1:13.1.0~dfsg-1ubuntu1
esm-apps/xenial

not-affected

1:13.1.0~dfsg-1ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needed]
lucid

ignored

end of life
precise

not-affected

Показывать по

Ссылки на источники

5 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2014-9374

nvd
около 11 лет назад

Double free vulnerability in the WebSocket Server (res_http_websocket module) in Asterisk Open Source 11.x before 11.14.2, 12.x before 12.7.2, and 13.x before 13.0.2 and Certified Asterisk 11.6 before 11.6-cert9 allows remote attackers to cause a denial of service (crash) by sending a zero length frame after a non-zero length frame.

debian логотип

CVE-2014-9374

debian
около 11 лет назад

Double free vulnerability in the WebSocket Server (res_http_websocket ...

github логотип

GHSA-4g26-4jfh-95vh

github
больше 3 лет назад

Double free vulnerability in the WebSocket Server (res_http_websocket module) in Asterisk Open Source 11.x before 11.14.2, 12.x before 12.7.2, and 13.x before 13.0.2 and Certified Asterisk 11.6 before 11.6-cert9 allows remote attackers to cause a denial of service (crash) by sending a zero length frame after a non-zero length frame.

5 Medium

CVSS2