copyright | disclaimer | privacy | contact  
Australia's Leading Computer Emergency Response Team
 
Search this site

 
On this site

 > HOME
 > About AusCERT
 > Membership
 > Contact Us
 > PKI Services
 > Publications
 > Sec. Bulletins
 > Conferences
 > News & Media
 > Services
 > Web Log
 > Site Map
 > Site Help
 > Member login

  Home » Security Bul... » Security Bul... » AusCERT Exte... » ESB-2012.0548 - [Debian] asterisk: Multiple vulnerab...
 

ESB-2012.0548 - [Debian] asterisk: Multiple vulnerabilities
Date: 14 June 2012
References: ESB-2011.0685.2  ESB-2012.0503  

Click here for printable version
Click here for PGP verifiable version
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

===========================================================================
             AUSCERT External Security Bulletin Redistribution

                               ESB-2012.0548
                         asterisk security update
                               14 June 2012

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:           asterisk
Publisher:         Debian
Operating System:  Debian GNU/Linux
Impact/Access:     Denial of Service      -- Remote/Unauthenticated
                   Access Privileged Data -- Remote/Unauthenticated
Resolution:        Patch/Upgrade
CVE Names:         CVE-2012-2948 CVE-2012-2947 CVE-2011-2666

Reference:         ESB-2012.0503
                   ESB-2011.0685.2

Original Bulletin: 
   http://www.debian.org/security/2012/dsa-2493

- --------------------------BEGIN INCLUDED TEXT--------------------

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - -------------------------------------------------------------------------
Debian Security Advisory DSA-2493-1                   security@debian.org
http://www.debian.org/security/                            Florian Weimer
June 12, 2012                          http://www.debian.org/security/faq
- - -------------------------------------------------------------------------

Package        : asterisk
Vulnerability  : denial of service
Problem type   : remote
Debian-specific: no
CVE ID         : CVE-2012-2947 CVE-2012-2948
Debian Bug     : 675204 675210

Several vulnerabilities were discovered in Asterisk, a PBX and
telephony toolkit.

CVE-2012-2947
	The IAX2 channel driver allows remote attackers to cause a
	denial of service (daemon crash) by placing a call on hold
	(when a certain mohinterpret setting is enabled).

CVE-2012-2948
	The Skinny channel driver allows remote authenticated users to
	cause a denial of service (NULL pointer dereference and daemon
	crash) by closing a connection in off-hook mode.

In addition, it was discovered that Asterisk does not set the
alwaysauthreject option by default in the SIP channel driver.  This
allows remote attackers to observe a difference in response behavior
and check for the presence of account names.  (CVE-2011-2666)  System
administrators concerned by this user enumerating vulnerability should
enable the alwaysauthreject option in the configuration.  We do not
plan to change the default setting in the stable version
(Asterisk 1.6) in order to preserve backwards compatibility.

For the stable distribution (squeeze), this problem has been fixed in
version 1:1.6.2.9-2+squeeze6.

For the testing distribution (wheezy) and the unstable distribution
(sid), this problem has been fixed in version 1:1.8.13.0~dfsg-1.

We recommend that you upgrade your asterisk packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAEBAgAGBQJP15u9AAoJEL97/wQC1SS+Pu0H/0ZPFRSNpL+hJKd7b5FGF6al
BZSp51eAC0d2mEFWMml4DAvx6u1gMPzrO9PPNgsEc6gxNyD4Stj+rF54h6X5i5NR
ZSlyeQTQ292J18+LdANYWwxQJyzNNthNmYL/2AiR6z2BRnD3ZqHiPbWGv0FV4Vyw
rT8fZ7ujp7CQlFGwcqjPxUzBqEq5U2raN2K9BoP6zpu8mHf9WzcmL4KZR/wJxMkf
04McrMttF++gM3atFSSXCWC5Bpj8q0xpr3YIv0dI8+fWPFpevNX2MBM+diS06iNc
PUWfCPTy2Psl46dC3J+JeF8TPWE/HCmV98DD54DEv0R1tPUmNm362dtfiutiBbQ=
=Wy1e
- -----END PGP SIGNATURE-----

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

        http://www.auscert.org.au/render.html?cid=1980

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
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=/hV4
-----END PGP SIGNATURE-----




Comments? Click here http://www.auscert.org.au/render.html?cid=1980&it=15935