it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 4999-1] asterisk security update

From: Moritz Muehlenhoff <jmm AT debian.org>
To: debian-security-announce AT lists.debian.org
Subject: [IT-SecNots] [SECURITY] [DSA 4999-1] asterisk security update
Date: Mon, 1 Nov 2021 19:36:09 +0000
Authentication-results: mail02.piratenpartei.de; dkim=none; spf=none (mail02.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 82.195.75.100) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"; dmarc=none
List-archive: https://lists.debian.org/msgid-search/20211101193609.GA28544 AT seger.debian.org
List-id: <debian-security-announce.lists.debian.org>
List-url: <http://lists.debian.org/debian-security-announce/>
Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From: Date:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=ThpSZkv2HU9QvoVKMe4c5wtAA1/wNMrxdCMU9fJb3Ig=; b=Ce Wanz53TdPl1rrL07z9vgbJ1CMSre/IjbfoN7ywR92FF0twNUHdnPRMDHs2+q2ISaUk9ZnkqZP3Tt+ WUHK3dhE1YzxSetYj3ZgfHeVXDytSlbnyjQd7932++1ofuwsKDgTqZZv/99Fr0VXPZ7D7+pKE5u8i hJZuuACpqUIn2krwM/9ebDIlhReNTCfT+2e/0JAQ3GgKind0r31yUkqIctayWbtZbkNXHTS7/se66 B3QO4if65QkLv/ZNw2PV4S86SUQzn/wL5lml34jaFNHsC2bPVwMysIX2e1t35Rj9bQMtSN55jrJMO gQPt5aeJYsU8dmMoLXngY4EaFKMucdwA==;
Old-return-path: <jmm AT seger.debian.org>
Priority: urgent
Resent-date: Mon, 1 Nov 2021 19:36:30 +0000 (UTC)
Resent-from: debian-security-announce AT lists.debian.org
Resent-message-id: <Uo1ciqxhX7F.A.3X.-GEghB@bendel>
Resent-sender: debian-security-announce-request AT lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4999-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
November 01, 2021 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : asterisk
CVE ID : CVE-2021-32558 CVE-2021-32686
Debian Bug : 991710 991931

Multiple vulnerabilities have been discovered in Asterisk, an open
source PBX and telephony toolkit, which may result in denial of service.

For the stable distribution (bullseye), these problems have been fixed in
version 1:16.16.1~dfsg-1+deb11u1.

We recommend that you upgrade your asterisk packages.

For the detailed security status of asterisk please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/asterisk

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=n+Nz
-----END PGP SIGNATURE-----

[IT-SecNots] [SECURITY] [DSA 4999-1] asterisk security update, Moritz Muehlenhoff, 01.11.2021

Archiv bereitgestellt durch MHonArc 2.6.24.