Date: Fri, 6 Sep 2019 07:53:14 +0000 (UTC) From: Guido Falsi <madpilot@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r511284 - head/security/vuxml Message-ID: <201909060753.x867rE6r044413@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: madpilot Date: Fri Sep 6 07:53:13 2019 New Revision: 511284 URL: https://svnweb.freebsd.org/changeset/ports/511284 Log: Document asterisk vulnerabilities. Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Fri Sep 6 07:39:45 2019 (r511283) +++ head/security/vuxml/vuln.xml Fri Sep 6 07:53:13 2019 (r511284) @@ -58,6 +58,89 @@ Notes: * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">; + <vuln vid="7d53d8da-d07a-11e9-8f1a-001999f8d30b"> + <topic>asterisk -- Remote Crash Vulnerability in audio transcoding</topic> + <affects> + <package> + <name>asterisk13</name> + <range><lt>13.28.1</lt></range> + </package> + <package> + <name>asterisk16</name> + <range><lt>16.5.1</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml">; + <p>The Asterisk project reports:</p> + <blockquote cite="http://www.asterisk.org/downloads/security-advisories">; + <p>When audio frames are given to the audio transcoding + support in Asterisk the number of samples are examined + and as part of this a message is output to indicate that + no samples are present. A change was done to suppress + this message for a particular scenario in which the message + was not relevant. This change assumed that information + about the origin of a frame will always exist when in + reality it may not.</p> + <p>This issue presented itself when an RTP packet containing + no audio (and thus no samples) was received. In a particular + transcoding scenario this audio frame would get turned + into a frame with no origin information. If this new frame + was then given to the audio transcoding support a crash + would occur as no samples and no origin information would + be present. The transcoding scenario requires the genericplc + option to be set to enabled (the default) and a transcoding + path from the source format into signed linear and then + from signed linear into another format.</p> + <p>Note that there may be other scenarios that have not + been found which can cause an audio frame with no origin + to be given to the audio transcoding support and thus + cause a crash.</p> + </blockquote> + </body> + </description> + <references> + <url>https://downloads.asterisk.org/pub/security/AST-2019-005.html</url>; + <cvename>CVE-2019-15639</cvename> + </references> + <dates> + <discovery>2019-08-07</discovery> + <entry>2019-09-06</entry> + </dates> + </vuln> + + <vuln vid="d94c08d2-d079-11e9-8f1a-001999f8d30b"> + <topic>asterisk -- Crash when negotiating for T.38 with a declined stream</topic> + <affects> + <package> + <name>asterisk15</name> + <range><lt>15.7.4</lt></range> + </package> + <package> + <name>asterisk16</name> + <range><lt>16.5.1</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml">; + <p>The Asterisk project reports:</p> + <blockquote cite="http://www.asterisk.org/downloads/security-advisories">; + <p>When Asterisk sends a re-invite initiating T.38 faxing, + and the endpoint responds with a declined media stream a + crash will then occur in Asterisk.</p> + </blockquote> + </body> + </description> + <references> + <url>https://downloads.asterisk.org/pub/security/AST-2019-004.html</url>; + <cvename>CVE-2019-15297</cvename> + </references> + <dates> + <discovery>2019-08-05</discovery> + <entry>2019-09-06</entry> + </dates> + </vuln> + <vuln vid="145a3e17-cea2-11e9-81e2-005056a311d1"> <topic>samba -- combination of parameters and permissions can allow user to escape from the share path definition</topic> <affects>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201909060753.x867rE6r044413>