The Precise Pangolin has reached end of life, so this bug will not be
fixed for that release
** Changed in: asterisk (Ubuntu Precise)
Status: New => Won't Fix
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
Launchpad has imported 5 comments from the remote bug at
https://bugzilla.redhat.com/show_bug.cgi?id=838179.
If you reply to an imported comment from within Launchpad, your comment
will be sent to the remote bug automatically. Read more about
Launchpad's inter-bugtracker facilities at
** Changed in: gentoo
Status: Unknown = Fix Released
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to asterisk in Ubuntu.
https://bugs.launchpad.net/bugs/1022360
Title:
(CVE-2012-3812) CVE-2012-3812 asterisk: Remote crash
** Changed in: gentoo
Status: Unknown = Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1022360
Title:
(CVE-2012-3812) CVE-2012-3812 asterisk: Remote crash vulnerability in
This bug was fixed in the package asterisk - 1:1.8.13.1~dfsg-1ubuntu1
---
asterisk (1:1.8.13.1~dfsg-1ubuntu1) quantal; urgency=low
* Merge from Debian unstable. (LP: #1022360, CVE-2012-3812)
Remaining changes:
- debian/asterisk.init: chown /dev/dahdi
- Fix building on
** Also affects: asterisk (Ubuntu Precise)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to asterisk in Ubuntu.
https://bugs.launchpad.net/bugs/1022360
Title:
(CVE-2012-3812) CVE-2012-3812
** Branch linked: lp:ubuntu/asterisk
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to asterisk in Ubuntu.
https://bugs.launchpad.net/bugs/1022360
Title:
(CVE-2012-3812) CVE-2012-3812 asterisk: Remote crash vulnerability in
voice
This bug was fixed in the package asterisk - 1:1.8.13.1~dfsg-1ubuntu1
---
asterisk (1:1.8.13.1~dfsg-1ubuntu1) quantal; urgency=low
* Merge from Debian unstable. (LP: #1022360, CVE-2012-3812)
Remaining changes:
- debian/asterisk.init: chown /dev/dahdi
- Fix building on
** Also affects: asterisk (Ubuntu Precise)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1022360
Title:
(CVE-2012-3812) CVE-2012-3812 asterisk: Remote
** Branch linked: lp:ubuntu/asterisk
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1022360
Title:
(CVE-2012-3812) CVE-2012-3812 asterisk: Remote crash vulnerability in
voice mail application
** Changed in: asterisk (Debian)
Status: Fix Committed = Fix Released
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to asterisk in Ubuntu.
https://bugs.launchpad.net/bugs/1022360
Title:
(CVE-2012-3812) CVE-2012-3812 asterisk:
** Changed in: asterisk (Debian)
Status: Fix Committed = Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1022360
Title:
(CVE-2012-3812) CVE-2012-3812 asterisk: Remote crash
Thanks for taking the time to report this bug and helping to make Ubuntu
better. Since the package referred to in this bug is in universe or
multiverse, it is community maintained. If you are able, I suggest
coordinating with upstream and posting a debdiff for this issue. When a
debdiff is
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2012-3863
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to asterisk in Ubuntu.
https://bugs.launchpad.net/bugs/1022360
Title:
(CVE-2012-3812) CVE-2012-3812 asterisk:
Thanks for taking the time to report this bug and helping to make Ubuntu
better. Since the package referred to in this bug is in universe or
multiverse, it is community maintained. If you are able, I suggest
coordinating with upstream and posting a debdiff for this issue. When a
debdiff is
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2012-3863
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1022360
Title:
(CVE-2012-3812) CVE-2012-3812 asterisk: Remote crash
** Bug watch added: Debian Bug tracker #680470
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=680470
** Also affects: asterisk (Debian) via
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=680470
Importance: Unknown
Status: Unknown
** CVE added: http://www.cve.mitre.org/cgi-
AST-2012-010
If Asterisk sends a re-invite and an endpoint responds to the re-invite with a
provisional
response but never sends a final response, then the SIP dialog structure is
never freed
and the RTP ports for the call are never released. If an attacker has the
ability to place a
call,
Launchpad has imported 3 comments from the remote bug at
https://bugs.gentoo.org/show_bug.cgi?id=425050.
If you reply to an imported comment from within Launchpad, your comment
will be sent to the remote bug automatically. Read more about
Launchpad's inter-bugtracker facilities at
** Bug watch added: Debian Bug tracker #680470
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=680470
** Also affects: asterisk (Debian) via
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=680470
Importance: Unknown
Status: Unknown
** CVE added: http://www.cve.mitre.org/cgi-
AST-2012-010
If Asterisk sends a re-invite and an endpoint responds to the re-invite with a
provisional
response but never sends a final response, then the SIP dialog structure is
never freed
and the RTP ports for the call are never released. If an attacker has the
ability to place a
call,
Launchpad has imported 3 comments from the remote bug at
https://bugs.gentoo.org/show_bug.cgi?id=425050.
If you reply to an imported comment from within Launchpad, your comment
will be sent to the remote bug automatically. Read more about
Launchpad's inter-bugtracker facilities at
22 matches
Mail list logo
