Summary: | <net-misc/asterisk-{11.25.3,13.17.2}: unauthorized data disclosure and command execution is possible (CVE-2017-{14099,14100}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Aleksandr Wagner (Kivak) <alwag> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | chainsaw |
Priority: | Normal | Flags: | stable-bot:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://downloads.asterisk.org/pub/security/AST-2017-005.html | ||
See Also: | https://bugs.gentoo.org/show_bug.cgi?id=629692 | ||
Whiteboard: | B2 [glsa cve] | ||
Package list: |
=net-misc/asterisk-11.25.3
|
Runtime testing required: | --- |
Bug Depends on: | |||
Bug Blocks: | 629692, 633856 |
Description
Aleksandr Wagner (Kivak)
2017-09-02 16:51:15 UTC
Arches, please test & mark stable: =net-misc/asterisk-11.25.3 x86 stable amd64 stable. Maintainer(s), please cleanup. Security, please add it to the existing request, or file a new one. New GLSA request filed. Gentoo Security Padawan (jmbailey/mbailey_j) This issue was resolved and addressed in GLSA 201710-29 at https://security.gentoo.org/glsa/201710-29 by GLSA coordinator Aaron Bauman (b-man). re-opened for cleanup. tree is clean |