ESB-2018.2728 - [Debian] kamailio: Execute arbitrary code/commands - Remote/unauthenticated 2018-09-13

Printable version
PGP/GPG verifiable version

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

===========================================================================
             AUSCERT External Security Bulletin Redistribution

                               ESB-2018.2728
                         kamailio security update
                             13 September 2018

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:           kamailio
Publisher:         Debian
Operating System:  Debian GNU/Linux 8
Impact/Access:     Execute Arbitrary Code/Commands -- Remote/Unauthenticated
                   Denial of Service               -- Remote/Unauthenticated
Resolution:        Patch/Upgrade
CVE Names:         CVE-2018-16657  

Reference:         ESB-2018.2708

Original Bulletin: 
   https://lists.debian.org/debian-lts-announce/2018/09/msg00013.html

- --------------------------BEGIN INCLUDED TEXT--------------------

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : kamailio
Version        : 4.2.0-2+deb8u5
CVE ID         : CVE-2018-16657
Debian Bug     : #908324

It was discovered that there was a denial of service and a potential
arbitrary code execution vulnerability in the kamailio SIP server.

A specially-crafted SIP message with an invalid "Via" header could cause a
segmentation fault and crash Kamailio due to missing input validation.

For Debian 8 "Jessie", this issue has been fixed in kamailio version
4.2.0-2+deb8u5.

We recommend that you upgrade your kamailio packages.


Regards,

- - -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

- -----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAluY7XsACgkQHpU+J9Qx
Hlio4hAAp1aSCGFey+nsDuyxF5ai68qQfCGpQJnqlEFOzheBDETYm8/B3LUg6bAt
aqrcXnlCQKR198F12IFV2b9K0cJNLyUQt26Elk1qW7U2mrjQABXGGGA3BonxBdhS
PQnZorWmoc/taCGGULgTz2UK8OGXeRlYSRWEuGT0kDikRZENV/N6kKUyPHgCbJGG
IzUWJqSzS0csssEwkuPiQ+BhyH3Frwkpd4SfDQzpR5bPzYJpXXONPLCGRtwQTqUZ
AZVuyaGwtZEpJ2WyiIS04D8PVCKUapEASvR4BvaiKGevPrY5VjbfncyU/sKmkOk2
V7IrYdJmsQ2km+CB6edzvyZdmDh3zdbbPm02qpiklU8XC0UmAI44qypMgk/DexXm
Szti99CUR3+IRSv56ZQmk1w6alp3YmAgeqI6KodQGG3pkgGdkzmuaFObAsFYbOGz
5NUU0oHte+sRkmxv/wmchxTHeGm7GSOz7QBz4ST99jt5mFgK15vTMVHfd7eMCf3W
t/lhEEmFWCyZVHjo7YBxPLQ9NG9lLLkviZkVZ2qjVv4VpgYOoj3DSNfUkhj1dKHU
Vih9kx2/QE7sOPJiCoJBYbp84Nqy+wFGN3qhxcC+DOE/n0z05QiPZ3GGEH+PANbs
W0NfjMwG4FXIrjFmvo23ppoF82Ldh4lfTHg4wTKMLZosj0wlYhw=
=DGqt
- -----END PGP SIGNATURE-----

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

        https://www.auscert.org.au/bulletins/

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
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=aXcR
-----END PGP SIGNATURE-----

« Back to bulletins