You are here
Home > Preporuke > Sigurnosni nedostak programskog paketa kamailio

Sigurnosni nedostak programskog paketa kamailio

by - 0
  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LUB

==========================================================================
Ubuntu Security Notice USN-4240-1
January 16, 2020

kamailio vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 16.04 LTS

Summary:

kamailio could be made to crash if it opened a specially crafted file.

Software Description:
– kamailio: very fast and configurable SIP proxy

Details:

It was discovered that Kamailio incorrectly handled a specially crafted file.
An attacker could possibly use this issue to cause a denial of service or
other unspecified impact.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 LTS:
kamailio 4.3.4-1.1ubuntu2.1

In general, a standard system update will make all the necessary changes.

References:
https://usn.ubuntu.com/4240-1
CVE-2018-8828

Package Information:
https://launchpad.net/ubuntu/+source/kamailio/4.3.4-1.1ubuntu2.1
—–BEGIN PGP SIGNATURE—–
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=aJDZ
—–END PGP SIGNATURE—–

AutorToni Vugdelija
Cert idNCERT-REF-2020-01-0001-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
IzvorAdobe
Top
More in Preporuke
Sigurnosni nedostaci programskih paketa Process Automation Manager i Decision Manager

Otkriveni su sigurnosni nedostaci u programskim paketima Process Automation Manager i Decision Manager za operacijski sustav RHEL. Otkriveni nedostaci potencijalnim...

Close