CVE-2006-1827

Published: 18 April 2006

Integer signedness error in format_jpeg.c in Asterisk 1.2.6 and earlier allows remote attackers to execute arbitrary code via a length value that passes a length check as a negative number, but triggers a buffer overflow when it is used as an unsigned length.

Priority

Unknown

Status

Package Release Status
asterisk
Launchpad, Ubuntu, Debian
Upstream Needs triage