Univention Bugzilla – Bug 39285
asterisk: Multiple minor issues (4.1)
Last modified: 2016-10-05 12:46:53 CEST
These issues are classified as minor issues: > Remote crash when handling out of call message in certain dialplan > configurations (CVE-2014-6610) http://downloads.asterisk.org/pub/security/AST-2014-010.html > Asterisk Manager User Unauthorized Shell Access (CVE-2014-4046) http://downloads.asterisk.org/pub/security/AST-2014-006.html > Permission escalation through ConfBridge actions/dialplan functions > (CVE-2014-8417) http://downloads.asterisk.org/pub/security/AST-2014-017.html > AMI permission escalation through DB dialplan function (CVE-2014-8418) http://downloads.asterisk.org/pub/security/AST-2014-018.html
asterisk 11.13 from wheezy backports has been build. The security issues have been fixed in the new version. Changelog: r63335
Tests (amd64): OK Issues: Fixed Changelog: OK
UCS 4.1 has been released: https://docs.software-univention.de/release-notes-4.1-0-en.html https://docs.software-univention.de/release-notes-4.1-0-de.html If this error occurs again, please use "Clone This Bug".