Security
Security
Multiple vulnerabilities have been discovered in Asterisk, the worst of which can lead to arbitrary code execution.
| Package | net-misc/asterisk on all architectures |
|---|---|
| Affected versions | < 18.26.3 |
| Unaffected versions | >= 18.26.3 |
Asterisk is an open source telephony engine and toolkit.
Multiple vulnerabilities have been discovered in Asterisk. Please review the CVE identifiers referenced below for details.
Please review the referenced CVE identifiers for details.
There is no known workaround at this time.
# emerge --sync # emerge --ask --oneshot --verbose ">=net-misc/asterisk-18.26.3"
Release date
January 26, 2026
Latest revision
January 26, 2026: 1
Severity
high
Exploitable
remote
Bugzilla entries