|
|
Log in / Subscribe / Register

asterisk: denial of service

Package(s):asterisk CVE #(s):
Created:October 19, 2016 Updated:October 19, 2016
Description: From the Mageia advisory:

The overlap dialing feature in chan_sip allows chan_sip to report to a device that the number that has been dialed is incomplete and more digits are required. If this functionality is used with a device that has performed username/password authentication RTP resources are leaked. This occurs because the code fails to release the old RTP resources before allocating new ones in this scenario. If all resources are used then RTP port exhaustion will occur and no RTP sessions are able to be set up (AST-2016-007).

Alerts:
Mageia MGASA-2016-0344 asterisk 2016-10-18
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds