(CVE-2012-3812) CVE-2012-3812 asterisk: Remote crash vulnerability in voice mail application (CVE-2012-3863) CVE-2012-3863 asterisk: Possible resource leak on uncompleted re-invite transactions
Bug #1022360 reported by
Karma Dorje
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Gentoo Linux |
Fix Released
|
Low
|
|||
asterisk (Debian) |
Fix Released
|
Unknown
|
|||
asterisk (Fedora) |
Fix Released
|
Medium
|
|||
asterisk (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Precise |
Won't Fix
|
Undecided
|
Unassigned |
Bug Description
AST-2012-011
If a single voicemail account is manipulated by two parties
simultaneously, a condition can occur where memory is freed
twice causing a crash.
http://
http://
http://
http://
Changed in asterisk (Debian): | |
status: | Unknown → Fix Committed |
Changed in gentoo: | |
importance: | Unknown → Low |
Changed in asterisk (Debian): | |
status: | Fix Committed → Fix Released |
Changed in gentoo: | |
status: | Unknown → Fix Released |
Changed in asterisk (Fedora): | |
importance: | Unknown → Medium |
status: | Unknown → Fix Released |
To post a comment you must log in.
http:// downloads. asterisk. org/pub/ security/ AST-2012- 010.html downloads. asterisk. org/pub/ security/ AST-2012- 011.html
http://
Please bump 1.8.13.1