CVE-2006-1827

Description

Integer signedness error in format_jpeg.c in Asterisk 1.2.6 and earlier allows remote attackers to execute arbitrary code via a length value that passes a length check as a negative number, but triggers a buffer overflow when it is used as an unsigned length.

Affected packages (1)

• Debian/asteriskfrom 0, < 1:1.2.7.1.dfsg-1

References (1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2006-1827