Explore top 10 tips to secure your open-source projects now. Read More
×Gentoo Linux Security Advisory GLSA 200804-13
https://security.gentoo.org/
Severity: Normal
Title: Asterisk: Multiple vulnerabilities
Date: April 14, 2008
Bugs: #200792, #202733, #213883
ID: 200804-13
Synopsis
=======
Multiple vulnerabilities have been found in Asterisk allowing for SQL
injection, session hijacking and unauthorized usage.
Background
=========
Asterisk is an open source telephony engine and tool kit.
Affected packages
================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 net-misc/asterisk < 1.2.27 >= 1.2.27
==========
Asterisk upstream developers reported multiple vulnerabilities:
* The Call Detail Record Postgres logging engine (cdr_pgsql) does not
correctly es...
style>.gentoo_availability{display:block;}
Get the latest Linux and open source security news straight to your inbox.