An issue was discovered in res_pjsip_t38.c in Sangoma Asterisk through 13.x and Certified Asterisk through 13.21-x. If it receives a re-invite initiating T.38 faxing and has a port of 0 and no c line in the SDP, a NULL pointer dereference and crash will occur. This is different from CVE-2019-18940.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2019-11-22 17:15
Updated : 2024-11-21 04:33
NVD link : CVE-2019-18976
Mitre link : CVE-2019-18976
CVE.ORG link : CVE-2019-18976
JSON object : View
Products Affected
digium
- asterisk
- certified_asterisk
debian
- debian_linux
CWE
CWE-476
NULL Pointer Dereference