FreeBSD : asterisk -- Exploitable Stack Buffer Overflow (5ab9fb2a-23a5-11e0-a835-0003ba02bf30)
High Nessus Plugin ID 51582
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionThe Asterisk Development Team reports :
The releases of Asterisk 22.214.171.124, 126.96.36.199, 188.8.131.52, 184.108.40.206.1, 220.127.116.11.2, 18.104.22.168, and 22.214.171.124 resolve an issue when forming an outgoing SIP request while in pedantic mode, which can cause a stack buffer to be made to overflow if supplied with carefully crafted caller ID information. The issue and resolution are described in the AST-2011-001 security advisory.
SolutionUpdate the affected packages.