PT-2022-12938 · Sangoma+1 · Asterisk+1
Gregory Massel
·
Published
2022-08-30
·
Updated
2025-02-13
·
CVE-2021-46837
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Sangoma Asterisk versions 16.x through 16.16.1
Sangoma Asterisk versions 17.x through 17.9.2
Sangoma Asterisk versions 18.x through 18.2.1
Certified Asterisk versions prior to 16.8-cert7
Description
The issue allows an attacker to trigger a crash by sending an m=image line and zero port in a response to a T.38 re-invite initiated by Asterisk. This occurs because there is an append operation relative to the active topology, but this should instead be a replace operation.
Recommendations
For Sangoma Asterisk versions 16.x through 16.16.1, update to version 16.16.2 or later.
For Sangoma Asterisk versions 17.x through 17.9.2, update to version 17.9.3 or later.
For Sangoma Asterisk versions 18.x through 18.2.1, update to version 18.2.2 or later.
For Certified Asterisk versions prior to 16.8-cert7, update to version 16.8-cert7 or later.
Fix
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Asterisk