[Openvas-discuss] Asterisk False-Positives

Reindl Harald h.reindl at thelounge.net
Mon Nov 2 20:19:39 CET 2015


looks like OpenVAS missed that there are for a long time now major 
version greater than 10 - asterisk-13.3.2-1.fc22.x86_64

Details: Asterisk PBX NULL Pointer Dereference Overflow (OID: 
1.3.6.1.4.1.25623.1.0.9999991)

Upgrade to Asterisk PBX release 1.4.1 or 1.2.16.

Details: Asterisk PBX SDP Header Overflow Vulnerability (OID: 
1.3.6.1.4.1.25623.1.0.9999992)

Upgrade to Asterisk release 1.4.2/1.2.17 or newer.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: OpenPGP digital signature
URL: <http://lists.wald.intevation.org/pipermail/openvas-discuss/attachments/20151102/37a1f839/attachment.asc>


More information about the Openvas-discuss mailing list