asterisk-addons
Page content
- Vulnerable: 1.4.4-1
- Unaffected: 1.4.7-1kalgan1
A vulnerability has been reported in Asterisk Addons, which can be exploited by malicious people to cause a DoS (Denial of Service). The problem is that the “ooh323” channel driver extracts memory addresses from incoming TCP packets and uses them in memory operations. This can be exploited to crash an affected application by sending a TCP packet containing invalid memory references.
- Bug Tracker URL: http://bugs.frugalware.org/task/3136