FreeBSD: VID-4A67450A-E044-11E7-ACCC-001999F8D30B: asterisk -- Remote Crash Vulnerability in RTCP Stack
|4||(AV:L/AC:M/Au:N/C:P/I:P/A:P)||December 12, 2017||December 14, 2017||December 14, 2017|
The Asterisk project reports:
If a compound RTCP packet is received containing more
than one report (for example a Receiver Report and a
Sender Report) the RTCP stack will incorrectly store
report information outside of allocated memory potentially
causing a crash.
Free Nexpose Download
Discover, prioritize, and remediate security risks today!