Null pointer dereference

2012-06-0215:55:00

PRIOn knowledge base

www.prio-n.com

6.3 Medium

AI Score

Confidence

High

0.96 High

EPSS

Percentile

99.5%

JSON

chan_skinny.c in the Skinny (aka SCCP) channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by closing a connection in off-hook mode.

CPENameOperatorVersion
certified_asteriskeq1.8.11 cert
certified_asteriskeq1.8.11 cert1
open_sourceeq1.8.10.0 rc1
open_sourceeq1.8.0 beta1
open_sourceeq1.8.1 rc1
open_sourceeq1.8.0 rc2
open_sourceeq1.8.9.0 rc1
open_sourceeq1.8.10.0 rc2
open_sourceeq1.8.0 rc3
open_sourceeq1.8.8.0 rc4

Name	Operator	Version
certified_asterisk	eq	1.8.11 cert
certified_asterisk	eq	1.8.11 cert1
open_source	eq	1.8.10.0 rc1
open_source	eq	1.8.0 beta1
open_source	eq	1.8.1 rc1
open_source	eq	1.8.0 rc2
open_source	eq	1.8.9.0 rc1
open_source	eq	1.8.10.0 rc2
open_source	eq	1.8.0 rc3
open_source	eq	1.8.8.0 rc4