Tag : buffer overflow

Asterisk 13.13-cert3, 13.14.1, 14.3.1 Now Available (Security Release)

Posted April 4, 2017 by Asterisk Development & filed under Asterisk Users Comments: 0.

Tags: Asterisk Development Team, buffer overflow, Certified Asterisk, current releases, Releases, security releases, security vulnerabilities

The Asterisk Development Team has announced security releases for Certified Asterisk13.13 and Asterisk 13 and 14. The available security releases are released as versions 13.13-cert3, 13.14.1, and 14.3.1.These releases are available for immediate downl..

Read more

Fax Buffer Overflow Detected

Posted February 6, 2014 by Tech Support & filed under Asterisk Users Comments: 1.

Tags: buffer overflow, Digium

All;Im running Asterisk 1.8.15-cert3 with the newest version of spandsp. Ive even tried unloading that and using Digiums FFA module but I receive the same error on an outbound transmission: [2014-02-06 14:35:14] ERROR[19066]: udptl.c:294 encode_open_ty..

Read more

Unknown Problem Sending Outbound Fax

Posted January 21, 2014 by Tech Support & filed under Asterisk Users Comments: 0.

Tags: buffer overflow, outbound fax

All;Im having a problem sending an outbound fax using Asterisk-1.8.15-cert3and the spandsp fax module using a SIP trunk. Im seeing hundreds of these: ERROR[14423]: udptl.c:294 encode_open_type: UDPTL(SIP/runcentral_outbound-00000074): Buffer overf..

Read more

Heap Buffer Overflow in Skinny Channel Driver

Posted April 23, 2012 by Pavel Espinal & filed under VoIP News Comments: 0.

Tags: asterisk, attacker, buffer overflow, button, Driver, heap, history date, linkedin, matt jordan, open source, Overflow, project security, source

In the Skinny channel driver, KEYPAD_BUTTON_MESSAGE events are queued for processing in a buffer allocated on the heap, where each DTMF value that is received is placed on the end of the buffer. Since the length of the buffer is never checked,..

Read more