Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2017-9372HistoryJun 02, 2017 - 2:29 p.m.
CVE-2017-9372
2017-06-0214:29:00
Debian Security Bug Tracker
security-tracker.debian.org
4
0.012 Low
EPSS
Percentile
85.3%
PJSIP, as used in Asterisk Open Source 13.x before 13.15.1 and 14.x before 14.4.1, Certified Asterisk 13.13 before 13.13-cert4, and other products, allows remote attackers to cause a denial of service (buffer overflow and application crash) via a SIP packet with a crafted CSeq header in conjunction with a Via header that lacks a branch parameter.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 9 | all | pjproject | < 2.5.5~dfsg-6+deb9u1 | pjproject_2.5.5~dfsg-6+deb9u1_all.deb |
Related
osv
osv
CVE-2017-9372
2017-06-02 14:29:00
pjproject - security update
2017-08-10 00:00:00
prion
prion
Buffer overflow
2017-06-02 14:29:00
cvelist
cvelist
CVE-2017-9372
2017-06-02 14:00:00
cve
cve
CVE-2017-9372
2017-06-02 14:29:00
ubuntucve
ubuntucve
CVE-2017-9372
2017-06-02 00:00:00
nvd
nvd
CVE-2017-9372
2017-06-02 14:29:00
openvas
openvas
Mageia: Security Advisory (MGASA-2017-0368)
2022-01-28 00:00:00
Debian: Security Advisory (DSA-3933-1)
2017-08-09 00:00:00
Asterisk Multiple DoS Vulnerabilities (May 2017)
2017-05-23 00:00:00
nessus
nessus
Debian DSA-3933-1 : pjproject - security update
2017-08-11 00:00:00
debian
debian
[SECURITY] [DSA 3933-1] pjproject security update
2017-08-10 18:41:54
mageia
mageia
Updated pjproject packages fix security vulnerabilities
2017-10-13 22:33:56