Lucene search
Copyright (c) 2016 Greenbone Networks GmbH http://greenbone.netOPENVAS:703535HistoryMar 29, 2016 - 12:00 a.m.
Debian Security Advisory DSA 3535-1 (kamailio - security update)
2016-03-2900:00:00
Copyright (c) 2016 Greenbone Networks GmbH http://greenbone.net
plugins.openvas.org
12
0.253 Low
EPSS
Percentile
96.7%
Stelios Tsampas discovered a buffer
overflow in the Kamailio SIP proxy which might result in the execution of
arbitrary code.
# OpenVAS Vulnerability Test
# $Id: deb_3535.nasl 6608 2017-07-07 12:05:05Z cfischer $
# Auto-generated from advisory DSA 3535-1 using nvtgen 1.0
# Script version: 1.0
#
# Author:
# Greenbone Networks
#
# Copyright:
# Copyright (c) 2016 Greenbone Networks GmbH http://greenbone.net
# Text descriptions are largely excerpted from the referenced
# advisory, and are Copyright (c) the respective author(s)
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#
if(description)
{
script_id(703535);
script_version("$Revision: 6608 $");
script_cve_id("CVE-2016-2385");
script_name("Debian Security Advisory DSA 3535-1 (kamailio - security update)");
script_tag(name: "last_modification", value: "$Date: 2017-07-07 14:05:05 +0200 (Fri, 07 Jul 2017) $");
script_tag(name: "creation_date", value: "2016-03-29 00:00:00 +0200 (Tue, 29 Mar 2016)");
script_tag(name: "cvss_base", value: "10.0");
script_tag(name: "cvss_base_vector", value: "AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_tag(name: "solution_type", value: "VendorFix");
script_tag(name: "qod_type", value: "package");
script_xref(name: "URL", value: "http://www.debian.org/security/2016/dsa-3535.html");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (c) 2016 Greenbone Networks GmbH http://greenbone.net");
script_family("Debian Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/debian_linux", "ssh/login/packages");
script_tag(name: "affected", value: "kamailio on Debian Linux");
script_tag(name: "insight", value: "Kamailio is a very fast and flexible SIP
(RFC3261) proxy server. Written entirely in C, Kamailio can handle thousands calls
per second even on low-budget hardware.");
script_tag(name: "solution", value: "For the stable distribution (jessie),
this problem has been fixed in version 4.2.0-2+deb8u1.
For the testing distribution (stretch), this problem has been fixed
in version 4.3.4-2.
For the unstable distribution (sid), this problem has been fixed in
version 4.3.4-2.
We recommend that you upgrade your kamailio packages.");
script_tag(name: "summary", value: "Stelios Tsampas discovered a buffer
overflow in the Kamailio SIP proxy which might result in the execution of
arbitrary code.");
script_tag(name: "vuldetect", value: "This check tests the installed software
version using the apt package manager.");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-deb.inc");
res = "";
report = "";
if ((res = isdpkgvuln(pkg:"kamailio", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-autheph-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-autheph-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-berkeley-bin", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-berkeley-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-berkeley-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-carrierroute-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-carrierroute-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-cpl-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-cpl-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-dbg:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-dbg:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-dnssec-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-dnssec-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-extra-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-extra-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-geoip-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-geoip-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-ims-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-ims-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-java-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-java-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-json-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-json-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-ldap-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-ldap-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-lua-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-lua-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-memcached-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-memcached-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-mono-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-mono-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-mysql-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-mysql-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-outbound-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-outbound-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-perl-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-perl-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-postgres-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-postgres-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-presence-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-presence-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-python-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-python-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-radius-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-radius-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-redis-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-redis-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-sctp-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-sctp-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-snmpstats-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-snmpstats-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-sqlite-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-sqlite-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-tls-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-tls-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-unixodbc-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-unixodbc-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-utils-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-utils-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-websocket-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-websocket-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-xml-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-xml-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-xmpp-modules:amd64", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-xmpp-modules:i386", ver:"4.2.0-2+deb8u1", rls_regex:"DEB8.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-autheph-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-autheph-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-berkeley-bin", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-berkeley-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-berkeley-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-carrierroute-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-carrierroute-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-cnxcc-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-cnxcc-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-cpl-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-cpl-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-dbg:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-dbg:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-dnssec-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-dnssec-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-erlang-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-erlang-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-extra-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-extra-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-geoip-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-geoip-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-ims-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-ims-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-java-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-java-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-json-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-json-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-kazoo-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-kazoo-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-ldap-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-ldap-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-lua-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-lua-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-memcached-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-memcached-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-mono-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-mono-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-mysql-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-mysql-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-outbound-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-outbound-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-perl-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-perl-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-postgres-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-postgres-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-presence-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-presence-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-purple-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-purple-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-python-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-python-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-radius-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-radius-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-redis-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-redis-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-sctp-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-sctp-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-snmpstats-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-snmpstats-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-sqlite-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-sqlite-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-tls-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-tls-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-unixodbc-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-unixodbc-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-utils-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-utils-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-websocket-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-websocket-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-xml-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-xml-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-xmpp-modules:amd64", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if ((res = isdpkgvuln(pkg:"kamailio-xmpp-modules:i386", ver:"4.3.4-2", rls_regex:"DEB9.[0-9]+")) != NULL) {
report += res;
}
if (report != "") {
security_message(data:report);
} else if (__pkg_match) {
exit(99); # Not vulnerable.
}
Related
nvd
nvd
CVE-2016-2385
2016-04-11 15:59:05
debiancve
debiancve
CVE-2016-2385
2016-04-11 15:59:05
cve
cve
CVE-2016-2385
2016-04-11 15:59:05
zdt
zdt
Kamailio 4.3.4 - Heap Based Buffer Overflow
2016-03-30 00:00:00
freebsd
freebsd
kamailio -- SEAS Module Heap overflow
2016-02-15 00:00:00
nessus
nessus
FreeBSD : kamailio -- SEAS Module Heap overflow (c428de09-ed69-11e5-92ce-002590263bf5)
2016-03-21 00:00:00
Debian DSA-3535-1 : kamailio - security update
2016-04-01 00:00:00
debian
debian
[SECURITY] [DSA 3535-1] kamailio security update
2016-03-29 21:14:13
ubuntucve
ubuntucve
CVE-2016-2385
2016-04-11 00:00:00
prion
prion
Heap overflow
2016-04-11 15:59:00
cvelist
cvelist
CVE-2016-2385
2016-04-11 15:00:00
openvas
openvas
Debian: Security Advisory (DSA-3535-1)
2016-03-28 00:00:00
Kamailio < 4.3.5 SEAS module encode_msg Heap Buffer Overflow Vulnerability
2016-03-31 00:00:00
exploitpack
exploitpack
Kamailio 4.3.4 - Heap Buffer Overflow
2016-03-30 00:00:00
exploitdb
exploitdb
Kamailio 4.3.4 - Heap Buffer Overflow
2016-03-30 00:00:00