FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

asterisk -- Remote crash when using IAX2 channel driver

Affected packages
asterisk13 < 13.38.3
asterisk16 < 16.19.1
asterisk18 < 18.5.1

Details

VuXML ID fb3455be-ebf6-11eb-aef1-0897988a1c07
Discovery 2021-04-13
Entry 2021-07-23

The Asterisk project reports:

If the IAX2 channel driver receives a packet that contains an unsupported media format it can cause a crash to occur in Asterisk.

References

CVE Name CVE-2021-32558
URL https://downloads.asterisk.org/pub/security/AST-2021-008.html