CVE-2017-17664
A Remote Crash issue was discovered in Asterisk Open Source 13.x before 13.18.4, 14.x before 14.7.4, and 15.x before 15.1.4 and Certified Asterisk before 13.13-cert9. Certain compound RTCP packets cause a crash in the RTCP Stack.
| Software | From | Fixed in |
|---|---|---|
| digium / asterisk | 15.0.0 | 15.1.4 |
| digium / asterisk | 14.0.0 | 14.7.4 |
| digium / asterisk | 13.0.0 | 13.18.4 |
| digium / certified_asterisk | 13.13-cert1 | 13.13-cert1.x |
| digium / certified_asterisk | 13.13-cert1_rc1 | 13.13-cert1_rc1.x |
| digium / certified_asterisk | 13.13-cert1_rc4 | 13.13-cert1_rc4.x |
| digium / certified_asterisk | 13.13-cert1_rc3 | 13.13-cert1_rc3.x |
| digium / certified_asterisk | 13.13-cert2 | 13.13-cert2.x |
| digium / certified_asterisk | 13.13-cert3 | 13.13-cert3.x |
| digium / certified_asterisk | 13.13-cert4 | 13.13-cert4.x |
| digium / certified_asterisk | 13.13-cert1_rc2 | 13.13-cert1_rc2.x |
| digium / certified_asterisk | 13.13-cert5 | 13.13-cert5.x |
| digium / certified_asterisk | 13.13-cert6 | 13.13-cert6.x |
| digium / certified_asterisk | 13.13-cert7 | 13.13-cert7.x |
| digium / certified_asterisk | - | 13.13.x |
| digium / certified_asterisk | 13.13-cert8 | 13.13-cert8.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime