FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

asterisk -- Multiple vulnerabilities

Affected packages
asterisk11 < 11.14.1

Details

VuXML ID 7bfd797c-716d-11e4-b008-001999f8d30b
Discovery 2014-11-21
Entry 2014-11-21

The Asterisk project reports:

AST-2014-014 - High call load may result in hung channels in ConfBridge.

AST-2014-017 - Permission escalation through ConfBridge actions/dialplan functions.

References

CVE Name CVE-2014-8414
CVE Name CVE-2014-8417
URL http://downloads.asterisk.org/pub/security/AST-2014-014.html
URL http://downloads.asterisk.org/pub/security/AST-2014-017.html