Bug 2076244 (CVE-2022-26498, CVE-2022-26499, CVE-2022-26651)

Summary: CVE-2022-26498 CVE-2022-26499 CVE-2022-26651 asterisk: multiple vulnerabilities
Product: [Other] Security Response Reporter: Sandipan Roy <saroy>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED UPSTREAM QA Contact:
Severity: low Docs Contact:
Priority: low    
Version: unspecifiedCC: bennie.joubert, jsmith.fedora, rbryant
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2022-04-18 15:27:04 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2076246, 2076245    
Bug Blocks:    

Description Sandipan Roy 2022-04-18 12:49:25 UTC 
https://packetstormsecurity.com/files/166744/AST-2022-001.txt
https://packetstormsecurity.com/files/166745/AST-2022-002.txt
https://packetstormsecurity.com/files/166746/AST-2022-003.txt

"* AST-2022-001: res_stir_shaken: resource exhaustion with large files
  When using STIR/SHAKEN, it???s possible to download files that are not
  certificates. These files could be much larger than what you would expect to
  download.

* AST-2022-002: res_stir_shaken: SSRF vulnerability with Identity header
  When using STIR/SHAKEN, it???s possible to send arbitrary requests like GET to
  interfaces such as localhost using the Identity header.

* AST-2022-003: func_odbc: Possible SQL Injection
  Some databases can use backslashes to escape certain characters, such as
  backticks. If input is provided to func_odbc which includes backslashes it is
  possible for func_odbc to construct a broken SQL query and the SQL query to
  fail."
Comment 1 Sandipan Roy 2022-04-18 12:49:45 UTC 
Created asterisk tracking bugs for this issue:

Affects: fedora-all [bug 2076245]
Comment 2 Sandipan Roy 2022-04-18 12:50:12 UTC 
Created asterisk tracking bugs for this issue:

Affects: epel-all [bug 2076246]
Comment 3 Product Security DevOps Team 2022-04-18 15:27:02 UTC 
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.