ELA-799-1 asterisk security update
Package : asteriskELA-799-1 asterisk security update
Version : 1:13.14.1~dfsg-2+deb9u8 (stretch)
Related CVEs :
Two security vulnerabilities were discovered in Asterisk, an Open Source Private Branch Exchange.
An incoming Setup message to addons/ooh323c/src/ooq931.c with a malformed
Calling or Called Party IE can cause a denial of service.
GetConfig, via Asterisk Manager Interface, allows a connected application
to access files outside of the asterisk configuration directory, aka
An asterisk security update has been released for Debian GNU/Linux 8 Extended LTS to address two security vulnerabilities.