FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-16 19:33:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
ab04cb0b-c533-11e7-8da5-001999f8d30b	asterisk -- Buffer overflow in CDR's set user The Asterisk project reports: No size checking is done when setting the user field for Party B on a CDR. Thus, it is possible for someone to use an arbitrarily large string and write past the end of the user field storage buffer. The earlier AST-2017-001 advisory for the CDR user field overflow was for the Party A buffer. Discovery 2017-10-09 Entry 2017-11-09 Modified 2017-12-13 asterisk13 < 13.18.1 https://downloads.asterisk.org/pub/security/AST-2017-010.html CVE-2017-16671

VuXML ID

Description

ab04cb0b-c533-11e7-8da5-001999f8d30b

asterisk -- Buffer overflow in CDR's set user

The Asterisk project reports:

No size checking is done when setting the user field for Party B on a CDR. Thus, it is possible for someone to use an arbitrarily large string and write past the end of the user field storage buffer. The earlier AST-2017-001 advisory for the CDR user field overflow was for the Party A buffer.

Discovery 2017-10-09
Entry 2017-11-09
Modified 2017-12-13
asterisk13

< 13.18.1

https://downloads.asterisk.org/pub/security/AST-2017-010.html
CVE-2017-16671