Debian Security Advisory DSA 2550-2 (asterisk) Network Vulnerability

Summary

The remote host is missing an update to asterisk announced via advisory DSA 2550-2.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202550-2

Insight

A regression in the SIP handling code was found in DSA-2550-1. For the stable distribution (squeeze), this problem has been fixed in version 1:1.6.2.9-2+squeeze8. We recommend that you upgrade your asterisk packages.

Severity

Classification

CVE CVE-2012-2186, CVE-2012-3812, CVE-2012-3863, CVE-2012-4737

CVSS	Base Score: 9.0 AV:N/AC:L/Au:S/C:C/I:C/A:C

Related Vulnerabilities

Debian Security Advisory DSA 1008-1 (kdegraphics)
Debian Security Advisory DSA 1018-2 (kernel-source-2.4.27)
Debian Security Advisory DSA 1002-1 (webcalendar)
Debian Security Advisory DSA 1017-1 (kernel-source-2.6.8)
Debian Security Advisory DSA 1020-1 (flex)

Take action and discover your vulnerabilities