FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 21:00:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
356b02e9-1954-11e7-9608-001999f8d30b	asterisk -- Buffer overflow in CDR's set user The Asterisk project reports: No size checking is done when setting the user field on a CDR. Thus, it is possible for someone to use an arbitrarily large string and write past the end of the user field storage buffer. This allows the possibility of remote code injection. Discovery 2017-03-27 Entry 2017-04-04 asterisk13 < 13.14.1 http://downloads.asterisk.org/pub/security/AST-2017-001.html https://issues.asterisk.org/jira/browse/ASTERISK-26897

VuXML ID

Description

356b02e9-1954-11e7-9608-001999f8d30b

asterisk -- Buffer overflow in CDR's set user

The Asterisk project reports:

No size checking is done when setting the user field on a CDR. Thus, it is possible for someone to use an arbitrarily large string and write past the end of the user field storage buffer. This allows the possibility of remote code injection.

Discovery 2017-03-27
Entry 2017-04-04
asterisk13

< 13.14.1

http://downloads.asterisk.org/pub/security/AST-2017-001.html
https://issues.asterisk.org/jira/browse/ASTERISK-26897