logo
DATABASE RESOURCES PRICING ABOUT US

Asterisk: Multiple vulnerabilities

Description

### Background Asterisk is an open source telephony engine and toolkit. ### Description Multiple vulnerabilities have been discovered in Asterisk. Please review the CVE identifiers referenced below for details. ### Impact A remote attacker could execute arbitrary code with the privileges of the process, cause a Denial of Service condition, or obtain sensitive information. ### Workaround There is no known workaround at this time. ### Resolution All Asterisk 11.* users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=net-misc/asterisk-11.7.0" All Asterisk 1.8.* users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=net-misc/asterisk-1.8.25.0"


Affected Package


OS OS Version Package Name Package Version
Gentoo any net-misc/asterisk 11.7.0

Related