Debian Security Advisory 1417-1 - Tilghman Lesher discovered that the logging engine of Asterisk, a free software PBX and telephony toolkit performs insufficient sanitizing of call-related data, which may lead to SQL injection.
053bb11054dac8fa583512f9cbc7f974fc8be1ed0b6ceeb7f24bf14961020c8f