Unrated severityNVD Advisory· Published Jul 9, 2012· Updated Apr 29, 2026

CVE-2012-3812

Description

Double free vulnerability in apps/app_voicemail.c in Asterisk Open Source 1.8.x before 1.8.13.1 and 10.x before 10.5.2, Certified Asterisk 1.8.11-certx before 1.8.11-cert4, and Asterisk Digiumphones 10.x.x-digiumphones before 10.5.2-digiumphones allows remote authenticated users to cause a denial of service (daemon crash) by establishing multiple voicemail sessions and accessing both the Urgent mailbox and the INBOX mailbox.

Affected products

128

Digium/Asterisk122 versions
cpe:2.3:a:digium:asterisk:10.0.0:*:*:*:*:*:*:*+ 121 more
- cpe:2.3:a:digium:asterisk:10.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.0.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.0.0:beta1:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.0.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.0.0:beta2:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.0.0:*:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.0.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.0.0:rc1:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.0.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.0.0:rc2:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.0.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.0.0:rc3:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.1.0:*:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.1.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.1.0:rc1:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.1.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.1.0:rc2:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.2.0:*:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.2.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.2.0:rc1:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.2.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.2.0:rc2:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.2.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.2.0:rc3:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.2.0:rc4:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.2.0:rc4:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.3.0:*:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.3.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.3.0:rc2:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.3.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.3.0:rc3:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.4.0:*:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.4.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.4.0:rc1:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.4.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.4.0:rc2:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.4.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.5.0:*:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.5.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.5.0:rc1:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.5.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.5.0:rc2:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:10.5.1:*:digiumphones:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.0:beta3:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.0:beta4:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.0:beta5:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.0:rc4:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.0:rc5:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.11.0:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.11.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.11.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.11.1:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.13.0:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.13.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.13.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.1:rc1:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.3:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.3:rc1:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.3:rc2:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.3:rc3:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.4:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.4.4:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.4:rc1:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.4:rc2:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.4:rc3:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.5:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.5:rc1:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.6.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.6.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.6.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.7.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.7.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.8.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.8.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.8.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.8.0:rc5:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.9.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.9.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.9.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:digium:asterisk:1.8.9.3:*:*:*:*:*:*:*
Digium/Asteriske2 versions
cpe:2.3:a:digium:asteriske:1.8.8.0:rc4:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:digium:asteriske:1.8.8.0:rc4:*:*:*:*:*:*
- cpe:2.3:a:digium:asteriske:1.8.9.1:*:*:*:*:*:*:*
Digium/Certified Asterisk4 versions
cpe:2.3:a:digium:certified_asterisk:1.8.11:cert:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:digium:certified_asterisk:1.8.11:cert:*:*:*:*:*:*
- cpe:2.3:a:digium:certified_asterisk:1.8.11:cert1:*:*:*:*:*:*
- cpe:2.3:a:digium:certified_asterisk:1.8.11:cert2:*:*:*:*:*:*
- cpe:2.3:a:digium:certified_asterisk:1.8.11:cert3:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.006
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000