Gentoo Linux Security Advisory GLSA 200804-13 - Multiple vulnerabilities have been found in Asterisk allowing for SQL injection, session hijacking and unauthorized usage. Versions less than 1.2.27 are affected.
67da6681bc621e1c47a9b59a1836b85459c55a674e2f9489f48e2bca51d3ffd7
Debian Security Advisory 1417-1 - Tilghman Lesher discovered that the logging engine of Asterisk, a free software PBX and telephony toolkit performs insufficient sanitizing of call-related data, which may lead to SQL injection.
053bb11054dac8fa583512f9cbc7f974fc8be1ed0b6ceeb7f24bf14961020c8f