FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

asterisk -- Remotely triggered crash

Affected packages
asterisk11 < 11.12.1

Details

VuXML ID e60d9e65-3f6b-11e4-ad16-001999f8d30b
Discovery 2014-09-05
Entry 2014-09-18

The Asterisk project reports:

When an out of call message - delivered by either the SIP or PJSIP channel driver or the XMPP stack - is handled in Asterisk, a crash can occur if the channel servicing the message is sent into the ReceiveFax dialplan application while using the res_fax_spandsp module.

Note that this crash does not occur when using the res_fax_digium module. While this crash technically occurs due to a configuration issue, as attempting to receive a fax from a channel driver that only contains textual information will never succeed, the likelihood of having it occur is sufficiently high as to warrant this advisory.

References

URL http://downloads.asterisk.org/pub/security/AST-2014-010.pdf
URL https://issues.asterisk.org/jira/browse/ASTERISK-24301
URL https://www.asterisk.org/security