CVE-2016-2316Integer Underflow (Wrap or Wraparound) in Asterisk

CWE-191Integer Underflow (Wrap or Wraparound)7 documents5 sources
Severity
5.9MEDIUMNVD
EPSS
1.1%
top 21.99%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Digium AsteriskDebian AsteriskDigium Certified Asterisk+1 more
Timeline
PublishedFeb 22
Latest updateMay 17

Description

chan_sip in Asterisk Open Source 1.8.x, 11.x before 11.21.1, 12.x, and 13.x before 13.7.1 and Certified Asterisk 1.8.28, 11.6 before 11.6-cert12, and 13.1 before 13.1-cert3, when the timert1 sip.conf configuration is set to a value greater than 1245, allows remote attackers to cause a denial of service (file descriptor consumption) via vectors related to large retransmit timeout values.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.2 | Impact: 3.6

Affected Packages4 packages

NVDdigium/certified_asterisk5 versions+4
debiandebian/asterisk< asterisk 1:13.7.2~dfsg-1 (bullseye)
Debiandigium/asterisk< 1:13.7.2~dfsg-1
NVDdigium/asterisk117 versions+116

Also affects: Fedora 22, 23

Patches

Patch: downloads.asterisk.orgPatch: downloads.asterisk.org

🔴Vulnerability Details

2
GHSA
GHSA-vjwh-4xjh-5595: chan_sip in Asterisk Open Source 12022-05-17
OSV
CVE-2016-2316: chan_sip in Asterisk Open Source 12016-02-22

📋Vendor Advisories

1
Debian
CVE-2016-2316: asterisk - chan_sip in Asterisk Open Source 1.8.x, 11.x before 11.21.1, 12.x, and 13.x befo...2016

💬Community

3
Bugzilla
CVE-2016-2316 asterisk: File descriptor exhaustion in chan_sip [epel-6]2016-02-04
Bugzilla
CVE-2016-2316 asterisk: File descriptor exhaustion in chan_sip [fedora-all]2016-02-04
Bugzilla
CVE-2016-2316 asterisk: File descriptor exhaustion in chan_sip (AST-2016-002)2016-02-04
CVE-2016-2316 — Integer Underflow (Wrap or Wraparound) | cvebase