Debian Security Advisory 1229-1 - Adam Boileau discovered an integer overflow in the Skinny channel driver in Asterisk, an Open Source Private Branch Exchange or telephone system, as used by Cisco SCCP phones, which allows remote attackers to execute arbitrary code.
b03507a78ee46f6cd9d3bd09ea5a67a6ab0cc736a6157f6b01f6651b0867bb5a