[asterisk-bugs] [JIRA] (ASTERISK-27452) Security: chan_skinny: Memory exhaustion if flooded with unauthenticated requests

Asterisk Team (JIRA) noreply at issues.asterisk.org
Wed Aug 8 10:17:10 CDT 2018


     [ https://issues.asterisk.org/jira/browse/ASTERISK-27452?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Asterisk Team updated ASTERISK-27452:
-------------------------------------

    Target Release Version/s: 16.0.0

> Security: chan_skinny:  Memory exhaustion if flooded with unauthenticated requests
> ----------------------------------------------------------------------------------
>
>                 Key: ASTERISK-27452
>                 URL: https://issues.asterisk.org/jira/browse/ASTERISK-27452
>             Project: Asterisk
>          Issue Type: Bug
>      Security Level: None
>          Components: Channels/chan_skinny
>    Affects Versions: 13.18.2, GIT, 15.1.2
>            Reporter: George Joseph
>            Assignee: George Joseph
>            Severity: Critical
>      Target Release: 13.18.3, 13.19.0, 14.7.3, 15.1.3, 15.2.0, 16.0.0
>
>         Attachments: AST-2017-013.txt
>
>
> If chan_skinny is flooded with requests, asterisk will quickly escalate virtual memory (but not resident memory) to the point where no new memory allocations are possible.



--
This message was sent by Atlassian JIRA
(v6.2#6252)



More information about the asterisk-bugs mailing list