Oval Definition:	oval:com.ubuntu.trusty:def:20137100000
Revision Date: 2013-12-19 Version: 1 Title: CVE-2013-7100 on Ubuntu 14.04 LTS (trusty) - medium. Description: Buffer overflow in the unpacksms16 function in apps/app_sms.c in Asterisk Open Source 1.8.x before 1.8.24.1, 10.x before 10.12.4, and 11.x before 11.6.1; Asterisk with Digiumphones 10.x-digiumphones before 10.12.4-digiumphones; and Certified Asterisk 1.8.x before 1.8.15-cert4 and 11.x before 11.2-cert3 allows remote attackers to cause a denial of service (daemon crash) via a 16-bit SMS message with an odd number of bytes, which triggers an infinite loop. Family: unix Class: vulnerability Status: Reference(s): CVE-2013-7100 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND NOT While related to the CVE in some way, the 'asterisk' package in trusty is not affected (note: '1:11.7.0~dfsg-1ubuntu1').
BACK