Alpine: asterisk: security update to 16.16.1-r0

high Tenable Self-Hosted Container Security Plugin ID 403580

Description

There are packages installed that are affected by multiple vulnerabilities referenced in the following CVEs:

- A buffer overflow in res_pjsip_diversion.c in Sangoma Asterisk versions 13.38.1, 16.15.1, 17.9.1, and
18.1.1 allows remote attacker to crash Asterisk by deliberately misusing SIP 181 responses.
(CVE-2020-35776)

- Incorrect access controls in res_srtp.c in Sangoma Asterisk 13.38.1, 16.16.0, 17.9.1, and 18.2.0 and
Certified Asterisk 16.8-cert5 allow a remote unauthenticated attacker to prematurely terminate secure
calls by replaying SRTP packets. (CVE-2021-26712)

- A stack-based buffer overflow in res_rtp_asterisk.c in Sangoma Asterisk before 16.16.1, 17.x before
17.9.2, and 18.x before 18.2.1 and Certified Asterisk before 16.8-cert6 allows an authenticated WebRTC
client to cause an Asterisk crash by sending multiple hold/unhold requests in quick succession. This is
caused by a signedness comparison mismatch. (CVE-2021-26713)

- An issue was discovered in Sangoma Asterisk 16.x before 16.16.1, 17.x before 17.9.2, and 18.x before
18.2.1 and Certified Asterisk before 16.8-cert6. When re-negotiating for T.38, if the initial remote
response was delayed just enough, Asterisk would send both audio and T.38 in the SDP. If this happened,
and the remote responded with a declined T.38 stream, then Asterisk would crash. (CVE-2021-26717)

- An issue was discovered in res_pjsip_session.c in Digium Asterisk through 13.38.1; 14.x, 15.x, and 16.x
through 16.16.0; 17.x through 17.9.1; and 18.x through 18.2.0, and Certified Asterisk through 16.8-cert5.
An SDP negotiation vulnerability in PJSIP allows a remote server to potentially crash Asterisk by sending
specific SIP responses that cause an SDP negotiation failure. (CVE-2021-26906)

See Also

https://security.alpinelinux.org/vuln/CVE-2020-35776

https://security.alpinelinux.org/vuln/CVE-2021-26712

https://security.alpinelinux.org/vuln/CVE-2021-26713

https://security.alpinelinux.org/vuln/CVE-2021-26717

https://security.alpinelinux.org/vuln/CVE-2021-26906

Plugin Details

Severity: High

ID: 403580

Version: Revision 1.24

Type: Local

Published: 10/31/2023

Updated: 3/12/2025

Supported Sensors: Agentless Assessment, Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: Low

Score: 3

Percentile: 23.18

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.9

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS Score Source: CVE-2021-26717

CVSS v3

Risk Factor: High

Base Score: 7.5

Temporal Score: 6.7

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2/18/2021

Reference Information

CVE: CVE-2020-35776, CVE-2021-26712, CVE-2021-26713, CVE-2021-26717, CVE-2021-26906