Search for packages
| purl | pkg:deb/debian/asterisk@1:1.4.3~dfsg-1?distro=sid |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-5211-bpr9-nqaf | Multiple stack-based buffer overflows in the process_sdp function in chan_sip.c of the SIP channel T.38 SDP parser in Asterisk before 1.4.3 allow remote attackers to execute arbitrary code via a long (1) T38FaxRateManagement or (2) T38FaxUdpEC SDP parameter in an SIP message, as demonstrated using SIP INVITE. |
CVE-2007-2293
|
| VCID-zn8s-5jkp-bkbr | The Manager Interface in Asterisk before 1.2.18 and 1.4.x before 1.4.3 allows remote attackers to cause a denial of service (crash) by using MD5 authentication to authenticate a user that does not have a password defined in manager.conf, resulting in a NULL pointer dereference. |
CVE-2007-2294
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T12:22:11.892461+00:00 | Debian Importer | Fixing | VCID-5211-bpr9-nqaf | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-16T10:11:04.254179+00:00 | Debian Importer | Fixing | VCID-zn8s-5jkp-bkbr | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-12T17:46:37.082462+00:00 | Debian Importer | Fixing | VCID-zn8s-5jkp-bkbr | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-12T17:46:37.055401+00:00 | Debian Importer | Fixing | VCID-5211-bpr9-nqaf | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-02T17:16:17.869894+00:00 | Debian Importer | Fixing | VCID-5211-bpr9-nqaf | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |
| 2026-04-02T17:08:59.837201+00:00 | Debian Importer | Fixing | VCID-zn8s-5jkp-bkbr | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |