Lucene search
GoogleOSV:CVE-2019-18976HistoryNov 22, 2019 - 5:15 p.m.
CVE-2019-18976
2019-11-2217:15:11
Google
osv.dev
5
An issue was discovered in res_pjsip_t38.c in Sangoma Asterisk through 13.x and Certified Asterisk through 13.21-x. If it receives a re-invite initiating T.38 faxing and has a port of 0 and no c line in the SDP, a NULL pointer dereference and crash will occur. This is different from CVE-2019-18940.
References
downloads.asterisk.org/pub/security/AST-2019-008.html
lists.debian.org/debian-lts-announce/2022/04/msg00001.html
packetstormsecurity.com/files/155436/Asterisk-Project-Security-Advisory-AST-2019-008.html
seclists.org/fulldisclosure/2019/Nov/20
www.asterisk.org/downloads/security-advisories
www.cybersecurity-help.cz/vdb/SB2019112218?affChecked=1
Related
cve
cve
CVE-2019-18976
2019-11-22 17:15:11
cvelist
cvelist
CVE-2019-18976
2019-11-22 16:59:19
prion
prion
Null pointer dereference
2019-11-22 17:15:00
nvd
nvd
CVE-2019-18976
2019-11-22 17:15:11
debiancve
debiancve
CVE-2019-18976
2019-11-22 17:15:11
ubuntucve
ubuntucve
CVE-2019-18976
2019-11-22 00:00:00
symantec
symantec
Asterisk Open Source CVE-2019-18976 Denial of Service Vulnerability
2019-11-21 00:00:00
openvas
openvas
Asterisk DoS Vulnerability (AST-2019-008)
2019-11-22 00:00:00
Debian: Security Advisory (DLA-2969-1)
2022-04-04 00:00:00
freebsd
freebsd
asterisk -- Re-invite with T.38 and malformed SDP causes crash
2019-11-07 00:00:00
nessus
nessus
veracode
veracode
Denial Of Service (DoS)
2022-04-05 06:59:05
osv
osv
asterisk - security update
2022-04-03 00:00:00
debian
debian
[SECURITY] [DLA 2969-1] asterisk security update
2022-04-03 05:56:53