AST-2012-011: Remote Crash Vulnerability In Voice Mail Application - Asterisk FAQs

* You are viewing Posts Tagged ‘resolution management’

AST-2012-011: Remote Crash Vulnerability In Voice Mail Application

Asterisk Security July 05, 2012 VoIP News Comments Off

Tags: ast, asterisk, Digiumphones, linkedin, Open, Release, resolution management, Security, security labs, source, voice mail application, voicemail account, vulnerability

If a single voicemail account is manipulated by two parties simultaneously, a condition can occur where memory is freed twice causing a crash.

Management of the memory in question has been reworked so that double frees and out of bounds array access do not occur. Upgrade to the latest release.

Affected Versions

Product Release Series
Asterisk Open Source 1.8.x 1.8.11 and newer
Asterisk Open Source 10.x 10.3 and newer
Certified Asterisk 1.8.11-certx All versions
Asterisk Digiumphones 10.x.x-digiumphones All versions

Corrected In

Product Release
Asterisk Open Source 1.8.13.1, 10.5.2
Certified Asterisk 1.8.11-cert4
Asterisk Digiumphones 10.5.2-digiumphones

Sponsored Links

If a single voicemail account is manipulated by two parties simultaneously, a condition can occur where memory is freed twice causing a crash.Management of the memory in question has been reworked so that double frees and out of bounds array access…, ast, asterisk, Digiumphones, linkedin, Open, Release, resolution management, Security, security labs, source, voice mail application, voicemail account, vulnerability

If a single voicemail account is manipulated by two parties simultaneously, a condition can occur where memory is freed twice causing a crash.Management of the memory in question has been reworked so that double frees and out of bounds array access…, ast, asterisk, Digiumphones, linkedin, Open, Release, resolution management, Security, security labs, source, voice mail application, voicemail account, vulnerability
To Consider
Sponsors
- Developed by Pavel Espinal
- Follow @pavel_espinal
- Hosting and bandwidth by TechElders.com
- Proudly powered by
  Wordpress engine
Interesting Projects
Misc Links
- About Me
Frequent Terms
AMI Anyone app application asterisk asterisk-users call caller callerid chan cli com connection Dahdi default Digium dtmf error exten extension file google hangup IAX information linkedin linux message module pbx phone port PRI PSTN queue realtime sip sip phone source support system thanks in advance time trunk www api
Recent Questions
Categories
FAQs Archive
- May 2013 (102)
- April 2013 (79)
- March 2013 (107)
- February 2013 (111)
- January 2013 (151)
- December 2012 (103)
- November 2012 (129)
- October 2012 (152)
- September 2012 (129)
- August 2012 (141)
- July 2012 (133)
- June 2012 (141)
- May 2012 (172)
- April 2012 (155)
- March 2012 (159)
- February 2012 (187)
- January 2012 (200)
- December 2011 (219)
- November 2011 (152)
- October 2011 (156)
- September 2011 (130)
- August 2011 (160)
- July 2011 (198)
- June 2011 (218)
- May 2011 (222)
- April 2011 (243)
- March 2011 (228)
- February 2011 (225)
- January 2011 (246)
- December 2010 (230)
- November 2010 (282)
- October 2010 (301)
- September 2010 (285)
- August 2010 (113)
- December 1969 (2)
Posts By Date
May 2013

M T W T F S S

« Apr

1 2 3 4 5

6 7 8 9 10 11 12

13 14 15 16 17 18 19

20 21 22 23 24 25 26

27 28 29 30 31