cbcvebase.

Debian Asterisk vulnerabilities

185 known vulnerabilities affecting debian/asterisk.

Total CVEs
185
CISA KEV
0
Public exploits
18
Exploited in wild
0
Severity breakdown
CRITICAL17HIGH46MEDIUM93LOW27

Vulnerabilities

Page 3 of 10
CVE-2022-39244P3HIGHCVSS 7.5fixed in asterisk 1:16.28.0~dfsg-0+deb11u2 (bullseye)2022
CVE-2022-39244 [HIGH] CVE-2022-39244: asterisk - PJSIP is a free and open source multimedia communication library written in C. I... PJSIP is a free and open source multimedia communication library written in C. In versions of PJSIP prior to 2.13 the PJSIP parser, PJMEDIA RTP decoder, and PJMEDIA SDP parser are affeced by a buffer overflow vulnerability. Users connecting to untrusted clients are at risk. This issue has been patched and is available as commit c4d3498 in the master branch and will
debian
CVE-2023-38703P3CRITICALCVSS 9.8fixed in asterisk 1:16.28.0~dfsg-0+deb11u4 (bullseye)2023
CVE-2023-38703 [CRITICAL] CVE-2023-38703: asterisk - PJSIP is a free and open source multimedia communication library written in C wi... PJSIP is a free and open source multimedia communication library written in C with high level API in C, C++, Java, C#, and Python languages. SRTP is a higher level media transport which is stacked upon a lower level media transport such as UDP and ICE. Currently a higher level transport is not synchronized with its lower level transport that may introduce use-a
debian
CVE-2022-26498P3HIGHCVSS 7.5fixed in asterisk 1:16.28.0~dfsg-0+deb11u1 (bullseye)2022
CVE-2022-26498 [HIGH] CVE-2022-26498: asterisk - An issue was discovered in Asterisk through 19.x. When using STIR/SHAKEN, it is ... An issue was discovered in Asterisk through 19.x. When using STIR/SHAKEN, it is possible to download files that are not certificates. These files could be much larger than what one would expect to download, leading to Resource Exhaustion. This is fixed in 16.25.2, 18.11.2, and 19.3.2. Scope: local bullseye: resolved (fixed in 1:16.28.0~dfsg-0+deb11u1) sid: resolved
debian
CVE-2022-24786P3CRITICALCVSS 9.8fixed in asterisk 1:16.28.0~dfsg-0+deb11u1 (bullseye)2022
CVE-2022-24786 [CRITICAL] CVE-2022-24786: asterisk - PJSIP is a free and open source multimedia communication library written in C. P... PJSIP is a free and open source multimedia communication library written in C. PJSIP versions 2.12 and prior do not parse incoming RTCP feedback RPSI (Reference Picture Selection Indication) packet, but any app that directly uses pjmedia_rtcp_fb_parse_rpsi() will be affected. A patch is available in the `master` branch of the `pjsip/pjproject` GitHub repository
debian
CVE-2017-16671P3HIGHCVSS 8.8fixed in asterisk 1:13.18.1~dfsg-1 (bullseye)2017
CVE-2017-16671 [HIGH] CVE-2017-16671: asterisk - A Buffer Overflow issue was discovered in Asterisk Open Source 13 before 13.18.1... A Buffer Overflow issue was discovered in Asterisk Open Source 13 before 13.18.1, 14 before 14.7.1, and 15 before 15.1.1 and Certified Asterisk 13.13 before 13.13-cert7. No size checking is done when setting the user field for Party B on a CDR. Thus, it is possible for someone to use an arbitrarily large string and write past the end of the user field storage buffe
debian
CVE-2022-39269P3CRITICALCVSS 9.1fixed in asterisk 1:16.28.0~dfsg-0+deb11u2 (bullseye)2022
CVE-2022-39269 [CRITICAL] CVE-2022-39269: asterisk - PJSIP is a free and open source multimedia communication library written in C. W... PJSIP is a free and open source multimedia communication library written in C. When processing certain packets, PJSIP may incorrectly switch from using SRTP media transport to using basic RTP upon SRTP restart, causing the media to be sent insecurely. The vulnerability impacts all PJSIP users that use SRTP. The patch is available as commit d2acb9a in the master
debian
CVE-2007-3762P3HIGHCVSS 9.3fixed in asterisk 1:1.4.8~dfsg-1 (bullseye)2007
CVE-2007-3762 [CRITICAL] CVE-2007-3762: asterisk - Stack-based buffer overflow in the IAX2 channel driver (chan_iax2) in Asterisk b... Stack-based buffer overflow in the IAX2 channel driver (chan_iax2) in Asterisk before 1.2.22 and 1.4.x before 1.4.8, Business Edition before B.2.2.1, AsteriskNOW before beta7, Appliance Developer Kit before 0.5.0, and s800i before 1.0.2 allows remote attackers to execute arbitrary code by sending a long (1) voice or (2) video RTP frame. Scope: local bullseye: res
debian
CVE-2022-23537P3MEDIUMCVSS 6.5fixed in asterisk 1:16.28.0~dfsg-0+deb11u2 (bullseye)2022
CVE-2022-23537 [MEDIUM] CVE-2022-23537: asterisk - PJSIP is a free and open source multimedia communication library written in C la... PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. Buffer overread is possible when parsing a specially crafted STUN message with unknown attribute. The vulnerability affects applications that uses STUN including PJNATH and PJSUA-LIB. The patch is
debian
CVE-2022-23547P3MEDIUMCVSS 6.5fixed in asterisk 1:16.28.0~dfsg-0+deb11u2 (bullseye)2022
CVE-2022-23547 [MEDIUM] CVE-2022-23547: asterisk - PJSIP is a free and open source multimedia communication library written in C la... PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. This issue is similar to GHSA-9pfh-r8x4-w26w. Possible buffer overread when parsing a certain STUN message. The vulnerability affects applications that uses STUN including PJNATH and PJSUA-LIB. Th
debian
CVE-2017-17664P3MEDIUMCVSS 5.9fixed in asterisk 1:13.18.5~dfsg-1 (bullseye)2017
CVE-2017-17664 [MEDIUM] CVE-2017-17664: asterisk - A Remote Crash issue was discovered in Asterisk Open Source 13.x before 13.18.4,... A Remote Crash issue was discovered in Asterisk Open Source 13.x before 13.18.4, 14.x before 14.7.4, and 15.x before 15.1.4 and Certified Asterisk before 13.13-cert9. Certain compound RTCP packets cause a crash in the RTCP Stack. Scope: local bullseye: resolved (fixed in 1:13.18.5~dfsg-1) sid: resolved (fixed in 1:13.18.5~dfsg-1)
debian
CVE-2024-57520P3LOWCVSS 9.8fixed in asterisk 1:22.3.0~dfsg+~cs6.15.60671435-1 (sid)2024
CVE-2024-57520 [CRITICAL] CVE-2024-57520: asterisk - Insecure Permissions vulnerability in asterisk v22 allows a remote attacker to e... Insecure Permissions vulnerability in asterisk v22 allows a remote attacker to execute arbitrary code via the action_createconfig function. NOTE: this is disputed by the Supplier because the impact is limited to creating empty files outside of the Asterisk product directory (aka directory traversal) and the attack can only be performed by a privileged user who
debian
CVE-2021-32558P3HIGHCVSS 7.5fixed in asterisk 1:16.16.1~dfsg-1+deb11u1 (bullseye)2021
CVE-2021-32558 [HIGH] CVE-2021-32558: asterisk - An issue was discovered in Sangoma Asterisk 13.x before 13.38.3, 16.x before 16.... An issue was discovered in Sangoma Asterisk 13.x before 13.38.3, 16.x before 16.19.1, 17.x before 17.9.4, and 18.x before 18.5.1, and Certified Asterisk before 16.8-cert10. If the IAX2 channel driver receives a packet that contains an unsupported media format, a crash can occur. Scope: local bullseye: resolved (fixed in 1:16.16.1~dfsg-1+deb11u1) sid: resolved (fixe
debian
CVE-2015-3008P3MEDIUMCVSS 4.3fixed in asterisk 1:13.7.2~dfsg-1 (bullseye)2015
CVE-2015-3008 [MEDIUM] CVE-2015-3008: asterisk - Asterisk Open Source 1.8 before 1.8.32.3, 11.x before 11.17.1, 12.x before 12.8.... Asterisk Open Source 1.8 before 1.8.32.3, 11.x before 11.17.1, 12.x before 12.8.2, and 13.x before 13.3.2 and Certified Asterisk 1.8.28 before 1.8.28-cert5, 11.6 before 11.6-cert11, and 13.1 before 13.1-cert2, when registering a SIP TLS device, does not properly handle a null byte in a domain name in the subject's Common Name (CN) field of an X.509 certificate, whi
debian
CVE-2014-8418P3CRITICALCVSS 9.0fixed in asterisk 1:13.1.0~dfsg-1 (bullseye)2014
CVE-2014-8418 [CRITICAL] CVE-2014-8418: asterisk - The DB dialplan function in Asterisk Open Source 1.8.x before 1.8.32, 11.x befor... The DB dialplan function in Asterisk Open Source 1.8.x before 1.8.32, 11.x before 11.1.4.1, 12.x before 12.7.1, and 13.x before 13.0.1 and Certified Asterisk 1.8 before 1.8.28-cert8 and 11.6 before 11.6-cert8 allows remote authenticated users to gain privileges via a call from an external protocol, as demonstrated by the AMI protocol. Scope: local bullseye: resol
debian
CVE-2006-4345P3MEDIUMCVSS 7.5fixed in asterisk 1:1.2.11.dfsg-1 (bullseye)2006
CVE-2006-4345 [HIGH] CVE-2006-4345: asterisk - Stack-based buffer overflow in channels/chan_mgcp.c in MGCP in Asterisk 1.0 thro... Stack-based buffer overflow in channels/chan_mgcp.c in MGCP in Asterisk 1.0 through 1.2.10 allows remote attackers to execute arbitrary code via a crafted audit endpoint (AUEP) response. Scope: local bullseye: resolved (fixed in 1:1.2.11.dfsg-1) sid: resolved (fixed in 1:1.2.11.dfsg-1)
debian
CVE-2021-43804P3HIGHCVSS 7.3fixed in asterisk 1:16.28.0~dfsg-0+deb11u1 (bullseye)2021
CVE-2021-43804 [HIGH] CVE-2021-43804: asterisk - PJSIP is a free and open source multimedia communication library written in C la... PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In affected versions if the incoming RTCP BYE message contains a reason's length, this declared length is not checked against the actual received packet size, potentially resulting in an out-of-boun
debian
CVE-2025-1131P3HIGHCVSS 7.0fixed in asterisk 1:16.28.0~dfsg-0+deb11u8 (bullseye)2025
CVE-2025-1131 [HIGH] CVE-2025-1131: asterisk - A local privilege escalation vulnerability exists in the safe_asterisk script in... A local privilege escalation vulnerability exists in the safe_asterisk script included with the Asterisk toolkit package. When Asterisk is started via this script (common in SysV init or FreePBX environments), it sources all .sh files located in /etc/asterisk/startup.d/ as root, without validating ownership or permissions. Non-root users with legitimate write access
debian
CVE-2017-14099P3HIGHCVSS 7.5fixed in asterisk 1:13.17.1~dfsg-1 (bullseye)2017
CVE-2017-14099 [HIGH] CVE-2017-14099: asterisk - In res/res_rtp_asterisk.c in Asterisk 11.x before 11.25.2, 13.x before 13.17.1, ... In res/res_rtp_asterisk.c in Asterisk 11.x before 11.25.2, 13.x before 13.17.1, and 14.x before 14.6.1 and Certified Asterisk 11.x before 11.6-cert17 and 13.x before 13.13-cert5, unauthorized data disclosure (media takeover in the RTP stack) is possible with careful timing by an attacker. The "strictrtp" option in rtp.conf enables a feature of the RTP stack that le
debian
CVE-2008-2119P4MEDIUMCVSS 4.3PoCfixed in asterisk 1.4 (bullseye)2008
CVE-2008-2119 [MEDIUM] CVE-2008-2119: asterisk - Asterisk Open Source 1.0.x and 1.2.x before 1.2.29 and Business Edition A.x.x an... Asterisk Open Source 1.0.x and 1.2.x before 1.2.29 and Business Edition A.x.x and B.x.x before B.2.5.3, when pedantic parsing (aka pedanticsipchecking) is enabled, allows remote attackers to cause a denial of service (daemon crash) via a SIP INVITE message that lacks a From header, related to invocations of the ast_uri_decode function, and improper handling of (1)
debian
CVE-2017-14603P3HIGHCVSS 7.5fixed in asterisk 1:13.17.2~dfsg-1 (bullseye)2017
CVE-2017-14603 [HIGH] CVE-2017-14603: asterisk - In Asterisk 11.x before 11.25.3, 13.x before 13.17.2, and 14.x before 14.6.2 and... In Asterisk 11.x before 11.25.3, 13.x before 13.17.2, and 14.x before 14.6.2 and Certified Asterisk 11.x before 11.6-cert18 and 13.x before 13.13-cert6, insufficient RTCP packet validation could allow reading stale buffer contents and when combined with the "nat" and "symmetric_rtp" options allow redirecting where Asterisk sends the next RTCP report. Scope: local b
debian
Debian Asterisk vulnerabilities | cvebase