Multiple vulnerabilities have been discovered in Asterisk, the worst of which can lead to privilege escalation.
Package | net-misc/asterisk on all architectures |
---|---|
Affected versions | < 18.24.3 |
Unaffected versions | >= 18.24.3 |
Asterisk is an open source telephony engine and toolkit.
Multiple vulnerabilities have been discovered in Asterisk. Please review the CVE identifiers referenced below for details.
Please review the referenced CVE identifiers for details.
There is no known workaround at this time.
All Asterisk users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=net-misc/asterisk-18.24.3"