CVE-2023-37457

CVE-2023-37457

Name

CVE-2023-37457

Description

Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk versions 18.20.0 and prior, 20.5.0 and prior, and 21.0.0; as well as ceritifed-asterisk 18.9-cert5 and prior, the 'update' functionality of the PJSIP_HEADER dialplan function can exceed the available buffer space for storing the new value of a header. By doing so this can overwrite memory or cause a crash. This is not externally exploitable, unless dialplan is explicitly written to update a header based on data from an outside source. If the 'update' functionality is not used the vulnerability does not occur. A patch is available at commit a1ca0268254374b515fa5992f01340f7717113fa.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
security-advisories@github.com	https://github.com/asterisk/asterisk/commit/a1ca0268254374b515fa5992f01340f7717113fa
security-advisories@github.com	https://github.com/asterisk/asterisk/security/advisories/GHSA-98rc-4j27-74hh
security-advisories@github.com	https://lists.debian.org/debian-lts-announce/2023/12/msg00019.html

Type

URI

security-advisories@github.com

https://github.com/asterisk/asterisk/commit/a1ca0268254374b515fa5992f01340f7717113fa

security-advisories@github.com

https://github.com/asterisk/asterisk/security/advisories/GHSA-98rc-4j27-74hh

security-advisories@github.com

https://lists.debian.org/debian-lts-announce/2023/12/msg00019.html

Match rules

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:digium:asterisk::::::::`	asterisk	>= None	<= 18.20.0
`cpe:2.3:a:digium:asterisk::::::::`	asterisk	>= 19.0.0	<= 20.5.0
`cpe:2.3:a:digium:asterisk:21.0.0:::::::*`	asterisk	== None	== 21.0.0
`cpe:2.3:a:sangoma:certified_asterisk:13.13.0:::::::*`	certified_asterisk	== None	== 13.13.0
`cpe:2.3:a:sangoma:certified_asterisk:16.8.0:-::::::`	certified_asterisk	== None	== 16.8.0
`cpe:2.3:a:sangoma:certified_asterisk:18.9:cert1::::::`	certified_asterisk	== None	== 18.9

CPE URI

Source package

Min version

Max version

cpe:2.3:a:digium:asterisk:*:*:*:*:*:*:*:*

asterisk

>= None

<= 18.20.0

cpe:2.3:a:digium:asterisk:*:*:*:*:*:*:*:*

asterisk

>= 19.0.0

<= 20.5.0

cpe:2.3:a:digium:asterisk:21.0.0:*:*:*:*:*:*:*

asterisk

== None

== 21.0.0

cpe:2.3:a:sangoma:certified_asterisk:13.13.0:*:*:*:*:*:*:*

certified_asterisk

== None

== 13.13.0

cpe:2.3:a:sangoma:certified_asterisk:16.8.0:-:*:*:*:*:*:*

certified_asterisk

== None

== 16.8.0

cpe:2.3:a:sangoma:certified_asterisk:18.9:cert1:*:*:*:*:*:*

certified_asterisk

== None

== 18.9

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
asterisk	edge-main	20.5.1-r0	None	fixed
asterisk	edge-main	18.15.1-r0	Timo Teras <timo.teras@iki.fi>	possibly vulnerable
asterisk	edge-main	18.15.0-r3	Timo Teras <timo.teras@iki.fi>	possibly vulnerable
asterisk	edge-main	18.15.0-r2	Timo Teras <timo.teras@iki.fi>	possibly vulnerable
asterisk	edge-main	18.15.0-r0	Timo Teras <timo.teras@iki.fi>	possibly vulnerable
asterisk	edge-main	18.13.0-r1	Timo Teras <timo.teras@iki.fi>	possibly vulnerable
asterisk	edge-main	18.13.0-r0	Timo Teras <timo.teras@iki.fi>	possibly vulnerable
asterisk	edge-main	18.11.2-r0	Timo Teras <timo.teras@iki.fi>	possibly vulnerable
asterisk	edge-main	18.2.2-r5	Timo Teras <timo.teras@iki.fi>	possibly vulnerable
asterisk	edge-main	18.2.2-r4	Timo Teras <timo.teras@iki.fi>	possibly vulnerable
asterisk	edge-main	18.2.2-r3	Timo Teras <timo.teras@iki.fi>	possibly vulnerable
asterisk	edge-main	18.2.2-r2	Timo Teras <timo.teras@iki.fi>	possibly vulnerable
asterisk	edge-main	18.2.2-r0	Timo Teras <timo.teras@iki.fi>	possibly vulnerable
asterisk	edge-main	18.2.1-r0	None	possibly vulnerable
asterisk	edge-main	18.1.1-r0	None	possibly vulnerable
asterisk	edge-main	18.0.1-r0	None	possibly vulnerable
asterisk	edge-main	16.6.2-r0	None	possibly vulnerable
asterisk	edge-main	16.5.1-r0	None	possibly vulnerable
asterisk	edge-main	16.4.1-r0	None	possibly vulnerable
asterisk	edge-main	16.3.0-r0	None	possibly vulnerable
asterisk	edge-main	15.7.1-r0	None	possibly vulnerable
asterisk	3.22-main	20.5.1-r0	None	fixed
asterisk	3.22-main	18.15.1-r0	None	possibly vulnerable
asterisk	3.22-main	18.11.2-r0	None	possibly vulnerable
asterisk	3.22-main	18.2.2-r2	None	possibly vulnerable
asterisk	3.22-main	18.2.1-r0	None	possibly vulnerable
asterisk	3.22-main	18.1.1-r0	None	possibly vulnerable
asterisk	3.22-main	18.0.1-r0	None	possibly vulnerable
asterisk	3.22-main	16.6.2-r0	None	possibly vulnerable
asterisk	3.22-main	16.5.1-r0	None	possibly vulnerable
asterisk	3.22-main	16.4.1-r0	None	possibly vulnerable
asterisk	3.22-main	16.3.0-r0	None	possibly vulnerable
asterisk	3.22-main	15.7.1-r0	None	possibly vulnerable
asterisk	3.21-main	20.5.1-r0	None	fixed
asterisk	3.21-main	18.15.1-r0	None	possibly vulnerable
asterisk	3.21-main	18.11.2-r0	None	possibly vulnerable
asterisk	3.21-main	18.2.2-r2	None	possibly vulnerable
asterisk	3.21-main	18.2.1-r0	None	possibly vulnerable
asterisk	3.21-main	18.1.1-r0	None	possibly vulnerable
asterisk	3.21-main	18.0.1-r0	None	possibly vulnerable
asterisk	3.21-main	16.6.2-r0	None	possibly vulnerable
asterisk	3.21-main	16.5.1-r0	None	possibly vulnerable
asterisk	3.21-main	16.4.1-r0	None	possibly vulnerable
asterisk	3.21-main	16.3.0-r0	None	possibly vulnerable
asterisk	3.21-main	15.7.1-r0	None	possibly vulnerable
asterisk	3.20-main	20.5.1-r0	None	fixed
asterisk	3.20-main	18.15.1-r0	None	possibly vulnerable
asterisk	3.20-main	18.11.2-r0	None	possibly vulnerable
asterisk	3.20-main	18.2.2-r2	None	possibly vulnerable
asterisk	3.20-main	18.2.1-r0	None	possibly vulnerable
asterisk	3.20-main	18.1.1-r0	None	possibly vulnerable
asterisk	3.20-main	18.0.1-r0	None	possibly vulnerable
asterisk	3.20-main	16.6.2-r0	None	possibly vulnerable
asterisk	3.20-main	16.5.1-r0	None	possibly vulnerable
asterisk	3.20-main	16.4.1-r0	None	possibly vulnerable
asterisk	3.20-main	16.3.0-r0	None	possibly vulnerable
asterisk	3.20-main	15.7.1-r0	None	possibly vulnerable
asterisk	3.19-main	20.5.1-r0	None	fixed
asterisk	3.19-main	18.15.1-r0	None	possibly vulnerable
asterisk	3.19-main	18.11.2-r0	None	possibly vulnerable
asterisk	3.19-main	18.2.2-r2	None	possibly vulnerable
asterisk	3.19-main	18.2.1-r0	None	possibly vulnerable
asterisk	3.19-main	18.1.1-r0	None	possibly vulnerable
asterisk	3.19-main	18.0.1-r0	None	possibly vulnerable
asterisk	3.19-main	16.6.2-r0	None	possibly vulnerable
asterisk	3.19-main	16.5.1-r0	None	possibly vulnerable
asterisk	3.19-main	16.4.1-r0	None	possibly vulnerable
asterisk	3.19-main	16.3.0-r0	None	possibly vulnerable
asterisk	3.19-main	15.7.1-r0	None	possibly vulnerable
asterisk	3.18-main	18.20.2-r0	Timo Teras <timo.teras@iki.fi>	fixed
asterisk	3.17-main	18.20.2-r0	Timo Teras <timo.teras@iki.fi>	fixed
asterisk	3.17-main	18.15.1-r0	Timo Teras <timo.teras@iki.fi>	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

References

Match rules

Vulnerable and fixed packages