blob: 8352e3ef0f88de8ce0f999a42013f7ef3605ce91 [file] [log] [blame]
<?xml version="1.0" encoding="utf-8"?>
<glsa id="200905-01">
<title>Asterisk: Multiple vulnerabilities</title>
Multiple vulnerabilities have been found in Asterisk allowing for Denial of
Service and username disclosure.
<product type="ebuild">asterisk</product>
<announced>May 02, 2009</announced>
<revised>May 02, 2009: 01</revised>
<package name="net-misc/asterisk" auto="yes" arch="*">
<unaffected range="ge">1.2.32</unaffected>
<vulnerable range="lt">1.2.32</vulnerable>
Asterisk is an open source telephony engine and toolkit.
Multiple vulnerabilities have been discovered in the IAX2 channel
driver when performing the 3-way handshake (CVE-2008-1897), when
handling a large number of POKE requests (CVE-2008-3263), when handling
authentication attempts (CVE-2008-5558) and when handling firmware
download (FWDOWNL) requests (CVE-2008-3264). Asterisk does also not
correctly handle SIP INVITE messages that lack a "From" header
(CVE-2008-2119), and responds differently to a failed login attempt
depending on whether the user account exists (CVE-2008-3903,
<impact type="normal">
Remote unauthenticated attackers could send specially crafted data to
Asterisk, possibly resulting in a Denial of Service via a daemon crash,
call-number exhaustion, CPU or traffic consumption. Remote
unauthenticated attackers could furthermore enumerate valid usernames
to facilitate brute force login attempts.
There is no known workaround at this time.
All Asterisk users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose &quot;&gt;=net-misc/asterisk-1.2.32&quot;</code>
<uri link="">CVE-2008-1897</uri>
<uri link="">CVE-2008-2119</uri>
<uri link="">CVE-2008-3263</uri>
<uri link="">CVE-2008-3264</uri>
<uri link="">CVE-2008-3903</uri>
<uri link="">CVE-2008-5558</uri>
<uri link="">CVE-2009-0041</uri>
<metadata tag="requester" timestamp="Thu, 02 Apr 2009 12:17:04 +0000">
<metadata tag="submitter" timestamp="Thu, 02 Apr 2009 12:31:27 +0000">
<metadata tag="bugReady" timestamp="Thu, 02 Apr 2009 12:32:59 +0000">