Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-4999-1:F24D2
HistoryNov 01, 2021 - 7:36 p.m.

[SECURITY] [DSA 4999-1] asterisk security update

2021-11-0119:36:09
lists.debian.org
14

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.5%

JSON

Debian Security Advisory DSA-4999-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
November 01, 2021 https://www.debian.org/security/faq

Package : asterisk
CVE ID : CVE-2021-32558 CVE-2021-32686
Debian Bug : 991710 991931

Multiple vulnerabilities have been discovered in Asterisk, an open
source PBX and telephony toolkit, which may result in denial of service.

For the stable distribution (bullseye), these problems have been fixed in
version 1:16.16.1~dfsg-1+deb11u1.

We recommend that you upgrade your asterisk packages.

For the detailed security status of asterisk please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/asterisk

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian11amd64asterisk< 1:16.16.1~dfsg-1+deb11u1asterisk_1:16.16.1~dfsg-1+deb11u1_amd64.deb
Debian11s390xasterisk-vpb-dbgsym< 1:16.16.1~dfsg-1+deb11u1asterisk-vpb-dbgsym_1:16.16.1~dfsg-1+deb11u1_s390x.deb
Debian11armhfasterisk-mp3< 1:16.16.1~dfsg-1+deb11u1asterisk-mp3_1:16.16.1~dfsg-1+deb11u1_armhf.deb
Debian11mips64elasterisk-mysql-dbgsym< 1:16.16.1~dfsg-1+deb11u1asterisk-mysql-dbgsym_1:16.16.1~dfsg-1+deb11u1_mips64el.deb
Debian11mipselasterisk-voicemail< 1:16.16.1~dfsg-1+deb11u1asterisk-voicemail_1:16.16.1~dfsg-1+deb11u1_mipsel.deb
Debian11ppc64elasterisk-voicemail-imapstorage-dbgsym< 1:16.16.1~dfsg-1+deb11u1asterisk-voicemail-imapstorage-dbgsym_1:16.16.1~dfsg-1+deb11u1_ppc64el.deb
Debian11i386asterisk-modules-dbgsym< 1:16.16.1~dfsg-1+deb11u1asterisk-modules-dbgsym_1:16.16.1~dfsg-1+deb11u1_i386.deb
Debian11ppc64elasterisk-voicemail-odbcstorage< 1:16.16.1~dfsg-1+deb11u1asterisk-voicemail-odbcstorage_1:16.16.1~dfsg-1+deb11u1_ppc64el.deb
Debian9amd64libpj2< 2.5.5~dfsg-6+deb9u3libpj2_2.5.5~dfsg-6+deb9u3_amd64.deb
Debian9amd64libpjmedia-videodev2< 2.5.5~dfsg-6+deb9u3libpjmedia-videodev2_2.5.5~dfsg-6+deb9u3_amd64.deb
Rows per page:
1-10 of 2911

Related

nessus 7
osv 5
openvas 5
nvd 2
veracode 2
prion 2
ubuntucve 2
freebsd 3
cvelist 2
alpinelinux 2
cnvd 1
cve 2
debiancve 2
mageia 1
debian 2
redos 1
fortinet 1
gentoo 1
nessus
nessus
Debian DSA-4999-1 : asterisk - security update
2021-11-02 00:00:00
FreeBSD : pjsip -- Race condition in SSL socket server (92ad12b8-ec09-11eb-aef1-0897988a1c07)
2021-07-26 00:00:00
FreeBSD : asterisk -- pjproject/pjsip: crash when SSL socket destroyed during handshake (53fbffe6-ebf7-11eb-aef1-0897988a1c07)
2021-07-26 00:00:00
osv
osv
asterisk - security update
2021-11-01 00:00:00
CVE-2021-32686
2021-07-23 22:15:08
asterisk - security update
2021-08-04 00:00:00
openvas
openvas
Asterisk Multiple DoS Vulnerabilities (AST-2021-008, AST-2021-009)
2021-07-23 00:00:00
Debian: Security Advisory (DSA-4999-1)
2021-11-03 00:00:00
Mageia: Security Advisory (MGASA-2021-0559)
2022-01-28 00:00:00
nvd
nvd
CVE-2021-32686
2021-07-23 22:15:08
CVE-2021-32558
2021-07-30 14:15:16
veracode
veracode
Denial Of Service (DoS)
2021-07-30 12:58:57
Denial Of Service
2021-08-06 10:18:28
prion
prion
Race condition
2021-07-23 22:15:00
Design/Logic Flaw
2021-07-30 14:15:00
ubuntucve
ubuntucve
CVE-2021-32686
2021-07-23 00:00:00
CVE-2021-32558
2021-07-30 00:00:00
freebsd
freebsd
asterisk -- pjproject/pjsip: crash when SSL socket destroyed during handshake
2021-05-05 00:00:00
pjsip -- Race condition in SSL socket server
2021-07-23 00:00:00
asterisk -- Remote crash when using IAX2 channel driver
2021-04-13 00:00:00
cvelist
cvelist
CVE-2021-32686 Denial of Service in PJSIP
2021-07-23 00:00:00
CVE-2021-32558
2021-07-27 05:19:34
alpinelinux
alpinelinux
CVE-2021-32686
2021-07-23 22:15:08
CVE-2021-32558
2021-07-30 14:15:16
cnvd
cnvd
PJSIP competition condition issue vulnerability
2021-07-30 00:00:00
cve
cve
CVE-2021-32686
2021-07-23 22:15:08
CVE-2021-32558
2021-07-30 14:15:16
debiancve
debiancve
CVE-2021-32686
2021-07-23 22:15:08
CVE-2021-32558
2021-07-30 14:15:16
mageia
mageia
Updated pjproject packages fix security vulnerability
2021-12-19 15:26:08
debian
debian
[SECURITY] [DLA 2729-1] asterisk security update
2021-08-04 10:06:59
[SECURITY] [DLA 2962-1] pjproject security update
2022-03-28 14:23:21
redos
redos
ROS-20211223-05
2021-12-23 00:00:00
fortinet
fortinet
Multiple vulnerabilities in PJSIP library
2022-05-03 00:00:00
gentoo
gentoo
PJSIP: Multiple Vulnerabilities
2022-10-31 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.5%

JSON
Related for DEBIAN:DSA-4999-1:F24D2
nessus7osv5openvas5nvd2veracode2prion2ubuntucve2freebsd3cvelist2alpinelinux2cnvd1cve2debiancve2mageia1debian2redos1fortinet1gentoo1