[v2.5] asterisk: (1) Buffer Overflow and (2) User Dialplan Permission Escalation
Asterisk Project Security Advisory - AST-2013-006
http://seclists.org/fulldisclosure/2013/Dec/139
Asterisk Project Security Advisory - AST-2013-007
http://seclists.org/fulldisclosure/2013/Dec/140
See the parent task for details.
(from redmine: issue id 2505, created on 2013-12-17, closed on 2013-12-17)
- Relations:
- parent #2503 (closed)
- Changesets:
- Revision dc313e91 by Timo Teräs on 2013-12-17T12:56:19Z:
main/asterisk: security upgrade to 11.6.1
fixes #2505
AST-2013-004 Remote Crash From Late Arriving SIP ACK With SDP
AST-2013-005 Remote Crash when Invalid SDP is sent in SIP Request
AST-2013-006 Buffer Overflow when receiving odd length 16 bit SMS message
AST-2013-007 Asterisk Manager User Dialplan Permission Escalation