Security vulnerability in Vicidial codebase – Update now!

Security vulnerability in Vicidial codebase – Update now!

There is a major security hole in the vicidial codebase for any SVN version below 3509. Please see the email below.

Vicidial exploit

Please make sure you update your SVN and your OS, to update your SVN run these commands:

  • cd /usr/src/astguiclient/trunk
  • svn up
  • perl install.pl (follow the prompts thru to the end)
  • On DB server only run this command: mysql -p -f –database=asterisk < /usr/src/astguiclient/trunk/extras/upgrade_2.14.sql

To update your OS for Leap, use “zypper up” and for centos use “yum update”

Please take this seriously.

Chris aka carpenox

carpenox

Leave a Comment
Share
Published by
carpenox
4 years ago

Recent Posts

VICIdial Development Roundup: Key Changes From Late November 2025 to Early 2026

VICIdial Development Roundup: Key Changes From Late November 2025 to Early 2026 By Carpenox —…

1 week ago

How to – Install ViciDial on Alma Linux 10

How to - Install ViciDial on Alma Linux 10 How to Install VICIdial on AlmaLinux…

1 week ago

Cyburdial Turns 6: A Milestone Worth Celebrating

Cyburdial Turns 6: A Milestone Worth Celebrating Six years ago, Cyburdial launched with a bold…

5 months ago

How to – Fix: Unable to open master device ‘/dev/dahdi/ctl’ for Dahdi

How to - Fix: Unable to open master device '/dev/dahdi/ctl' for Dahdi This happens after…

7 months ago

How to – Fix “Unable to lookup ‘SERVER_EXTERNAL_IP'”

How to - Fix "Unable to lookup 'SERVER_EXTERNAL_IP'" This error is the newer SVN versions…

12 months ago

How to – Upgrade any Leap ViciBox install to Leap 15.6

How to - Upgrade any Leap ViciBox install to Leap 15.6 A lot of people…

12 months ago

This website uses cookies.