[Secure-testing-team] Bug#762164: asterisk: CVE-2014-6610: Remote crash when handling out of call message in certain dialplan configurations
Salvatore Bonaccorso
carnil at debian.org
Fri Sep 19 07:01:49 UTC 2014
Source: asterisk
Severity: important
Tags: security upstream patch fixed-upstream
Hi,
the following vulnerability was published for asterisk.
CVE-2014-6610[0]:
Remote crash when handling out of call message in certain dialplan configurations
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2014-6610
[1] http://downloads.asterisk.org/pub/security/AST-2014-010.html
Please adjust the affected versions in the BTS as needed.
Regards,
Salvatore
More information about the Secure-testing-team
mailing list