Candidate: CVE-2012-2947
PublicDate: 2012-06-02 15:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2947
Description:
 chan_iax2.c in the IAX2 channel driver in Certified Asterisk 1.8.11-cert
 before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x
 before 10.4.1, when a certain mohinterpret setting is enabled, allows
 remote attackers to cause a denial of service (daemon crash) by placing a
 call on hold.
Ubuntu-Description:
Notes:
 tyhicks> The default Ubuntu configuration should not be vulnerable since a
  suggested music class is present.
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=675204
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_asterisk:
upstream_asterisk: released (1.8.12.1)
hardy_asterisk: ignored (reached end-of-life)
lucid_asterisk: ignored (reached end-of-life)
natty_asterisk: ignored (reached end-of-life)
oneiric_asterisk: ignored (reached end-of-life)
precise_asterisk: ignored (reached end-of-life)
precise/esm_asterisk: DNE (precise was needed)
quantal_asterisk: not-affected (1:1.8.13.1~dfsg-1ubuntu1)
raring_asterisk: not-affected (1:1.8.13.1~dfsg-1ubuntu1)
saucy_asterisk: not-affected (1:1.8.13.1~dfsg-1ubuntu1)
trusty_asterisk: not-affected (1:1.8.13.1~dfsg-1ubuntu1)
trusty/esm_asterisk: DNE (trusty was not-affected [1:1.8.13.1~dfsg-1ubuntu1])
utopic_asterisk: not-affected (1:1.8.13.1~dfsg-1ubuntu1)
vivid_asterisk: not-affected (1:1.8.13.1~dfsg-1ubuntu1)
vivid/stable-phone-overlay_asterisk: DNE
vivid/ubuntu-core_asterisk: DNE
wily_asterisk: not-affected (1:1.8.13.1~dfsg-1ubuntu1)
xenial_asterisk: not-affected (1:1.8.13.1~dfsg-1ubuntu1)
yakkety_asterisk: not-affected (1:1.8.13.1~dfsg-1ubuntu1)
zesty_asterisk: not-affected (1:1.8.13.1~dfsg-1ubuntu1)
devel_asterisk: not-affected (1:1.8.13.1~dfsg-1ubuntu1)