Security Issue in Asterisk trunk IMAP

Russell Bryant has posted details of a security issue in trunk:

A bug was fixed in IMAP_STORAGE in Asterisk trunk today in revision 71630. The problem was that the function, manager_list_voicemail_users() used the function count_messages() to determine the number of new messages waiting for a mailbox. However, this function was never defined for IMAP_STORAGE. Also, since we use lazy symbol resolution for our modules, the code could still actually build (with a warning, which is how I found it), and load happily into Asterisk. However, if you used this manager command, it will make Asterisk crash.

So, if your usage of Asterisk meets this criteria, you need to update:

1) You are using Asterisk trunk between revisions 66028 (about a month ago) and 71629

2) You are using IMAP_STORAGE for voicemail

3) You have the manager interface enabled

Also, I did not feel an official security advisory was justified for this since the problem never existed in a released version.

--
Russell Bryant
Software Engineer
Digium, Inc.

Current Rating: 0/10 (0 votes)

Comments (Click to post)

Similar Articles (Based on Title)

*-dev Developers meeting at von - September 10, 2006
Olle has posted details of the developers meeting at VON.

*-dev Open Source Pavilion at AstriCon: Your project wanted - July 31, 2009
John Todd has posted a note to let people know that Digium will give you a free booth and passes to Astricon for an Open Source project.

*-Dev: pseudo realtime and load issue - August 25, 2005
Steven Critchfield has posted details of a patch to reduce the risk of running Asterisk in pseudo realtime mode.

*-Announce: New issue tracker for handling licensing issues for Asterisk, Zaptel and related projects - February 7, 2006
The Asterisk Development Team have posted details of a new issue tracker for Asterisk and Zaptel etc.

Update on FBI Issue - Important - December 9, 2008
John Todd has sent a detailed note to the Asterisk developers list regarding the recent security release. Please post this wherever you can.

Workflow Guidelines for Asterisk Open Source Issue Tracker - September 25, 2009
The purpose of this document is to briefly describe the various statuses an issue can be placed in, and what that status means. In addition, the simple workflow and transition between statuses will be discussed.

Testers Needed Issue 16965 DBGet response does not end with a Complete event - March 19, 2010
Ryan Bullock is looking for people to test a patch he has written to fix the DBGet Action.

New IP phone snom 190 addresses security in VoIP - September 19, 2004
With the snom 190, the Berlin company addresses recent concerns about security of VoIP calls and adds productivity features for the business user.

New Security List - January 24, 2005
Steve Szmidt has posted details on the Asterisk-Security list.

VoIP-forum.com: NIST report urges caution with VoIP security - January 28, 2005
Olle's site has posted a link to an article on VoIP security.

Cisco tries to degrade the internet by attempting the patenting of security holes - July 9, 2005
There was a security hole discovered recently in the MTU Discovery process of ICMP packets.

Voip-News-Net: VoIP Security Roundup - January 27, 2006
There is an article on VoIP News Net discussing a few of the latest VoIP security threads.

*-Announce: Asterisk 1.2.9 and Asterisk 1.0.11 Released - Security Fix - June 6, 2006
The Asterisk Development Team today released Asterisk 1.2.9 and Asterisk 1.0.11 to address a security vulnerability in the IAX2 channel driver (chan_iax2).

Asterisk 1.2.9.1 and 1.0.11.1 Released -- Security Fix - June 7, 2006
The Asterisk release today has been rereleased.

The Daily Asterisk News

Similar Articles (Based on Title)