<div dir="ltr">PSC, Super Importante....<br><br><div class="gmail_quote">---------- Forwarded message ----------<br>From: <b class="gmail_sendername">Asterisk Security Team</b> <span dir="ltr">&lt;<a href="mailto:security@asterisk.org">security@asterisk.org</a>&gt;</span><br>
Date: 2014-03-10 18:06 GMT-03:00<br>Subject: [asterisk-dev] AST-2014-001: Stack Overflow in HTTP Processing of Cookie Headers.<br>To: <a href="mailto:asterisk-dev@lists.digium.com">asterisk-dev@lists.digium.com</a><br><br>
<br>               Asterisk Project Security Advisory - AST-2014-001<br>
<br>
         Product        Asterisk<br>
         Summary        Stack Overflow in HTTP Processing of Cookie Headers.<br>
    Nature of Advisory  Denial Of Service<br>
      Susceptibility    Remote Unauthenticated Sessions<br>
         Severity       Moderate<br>
      Exploits Known    No<br>
       Reported On      February 21, 2014<br>
       Reported By      Lucas Molas, researcher at Programa STIC, Fundacion<br>
<br>
                        Dr. Manuel Sadosky, Buenos Aires, Argentina<br>
        Posted On       March 10, 2014<br>
     Last Updated On    March 10, 2014<br>
     Advisory Contact   Richard Mudgett &lt;rmudgett AT digium DOT com&gt;<br>
         CVE Name       CVE-2014-2286<br>
<br>
    Description  Sending a HTTP request that is handled by Asterisk with a<br>
                 large number of Cookie headers could overflow the stack.<br>
                 You could even exhaust memory if you sent an unlimited<br>
                 number of headers in the request.<br>
<br>
    Resolution  The patched versions now handle headers in a fashion that<br>
                prevents a stack overflow. Users should upgrade to a<br>
                corrected version, apply the released patches, or disable<br>
                HTTP support.<br>
<br>
                               Affected Versions<br>
                Product              Release Series<br>
         Asterisk Open Source            1.8.x       All versions<br>
         Asterisk Open Source             11.x       All versions<br>
         Asterisk Open Source             12.x       All versions<br>
          Certified Asterisk             1.8.x       All versions<br>
          Certified Asterisk              11.x       All versions<br>
<br>
                                  Corrected In<br>
                 Product                              Release<br>
          Asterisk Open Source               1.8.26.1, 11.8.1, 12.1.1<br>
           Certified Asterisk                1.8.15-cert5, 11.6-cert2<br>
<br>
                                      Patches<br>
                                 SVN URL                               Revision<br>
   <a href="http://downloads.asterisk.org/pub/security/AST-2014-001-1.8.diff" target="_blank">http://downloads.asterisk.org/pub/security/AST-2014-001-1.8.diff</a>    Asterisk<br>
                                                                       1.8<br>
   <a href="http://downloads.asterisk.org/pub/security/AST-2014-001-11.diff" target="_blank">http://downloads.asterisk.org/pub/security/AST-2014-001-11.diff</a>     Asterisk<br>
                                                                       11<br>
   <a href="http://downloads.asterisk.org/pub/security/AST-2014-001-12.diff" target="_blank">http://downloads.asterisk.org/pub/security/AST-2014-001-12.diff</a>     Asterisk<br>
                                                                       12<br>
   <a href="http://downloads.asterisk.org/pub/security/AST-2014-001-1.8.15.diff" target="_blank">http://downloads.asterisk.org/pub/security/AST-2014-001-1.8.15.diff</a> Certified<br>
                                                                       Asterisk<br>
                                                                       1.8.15<br>
   <a href="http://downloads.asterisk.org/pub/security/AST-2014-001-11.6.diff" target="_blank">http://downloads.asterisk.org/pub/security/AST-2014-001-11.6.diff</a>   Certified<br>
                                                                       Asterisk<br>
                                                                       11.6<br>
<br>
       Links     <a href="https://issues.asterisk.org/jira/browse/ASTERISK-23340" target="_blank">https://issues.asterisk.org/jira/browse/ASTERISK-23340</a><br>
<br>
    Asterisk Project Security Advisories are posted at<br>
    <a href="http://www.asterisk.org/security" target="_blank">http://www.asterisk.org/security</a><br>
<br>
    This document may be superseded by later versions; if so, the latest<br>
    version will be posted at<br>
    <a href="http://downloads.digium.com/pub/security/AST-2014-001.pdf" target="_blank">http://downloads.digium.com/pub/security/AST-2014-001.pdf</a> and<br>
    <a href="http://downloads.digium.com/pub/security/AST-2014-001.html" target="_blank">http://downloads.digium.com/pub/security/AST-2014-001.html</a><br>
<br>
                                Revision History<br>
          Date                  Editor                 Revisions Made<br>
    03/10/14           Richard Mudgett           Initial Revision.<br>
<br>
               Asterisk Project Security Advisory - AST-2014-001<br>
              Copyright (c) 2014 Digium, Inc. All Rights Reserved.<br>
  Permission is hereby granted to distribute and publish this advisory in its<br>
                           original, unaltered form.<br>
<span class="HOEnZb"><font color="#888888"><br>
<br>
--<br>
_____________________________________________________________________<br>
-- Bandwidth and Colocation Provided by <a href="http://www.api-digital.com" target="_blank">http://www.api-digital.com</a> --<br>
<br>
asterisk-dev mailing list<br>
To UNSUBSCRIBE or update options visit:<br>
   <a href="http://lists.digium.com/mailman/listinfo/asterisk-dev" target="_blank">http://lists.digium.com/mailman/listinfo/asterisk-dev</a><br>
</font></span></div><br><br clear="all"><div><br></div>-- <br><span style="font-family:trebuchet ms,sans-serif">Sylvio Jollenbeck<br><font size="1"><a href="http://www.hosannatecnologia.com.br/" target="_blank">www.hosannatecnologia.com.br</a></font></span><br>
<img src="http://www.hosannatecnologia.com.br/pixel.fw.png"><br>
</div>