Bug#647252: CVE-2011-4063: Remote crash vulnerability in SIP channel driver
Package: asterisk Severity: grave Tags: security Please see http://downloads.asterisk.org/pub/security/AST-2011-012.html Apparently stable/oldstable is not affected, please but double-check. Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Bug#647252: CVE-2011-4063: Remote crash vulnerability in SIP channel driver
On Tue, Nov 01, 2011 at 08:31:00AM +0100, Moritz Muehlenhoff wrote: > Package: asterisk > Severity: grave > Tags: security > > Please see http://downloads.asterisk.org/pub/security/AST-2011-012.html > > Apparently stable/oldstable is not affected, please but double-check. Asterisk maintainers, did you get confirmation from upstream? Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Bug#647252: CVE-2011-4063: Remote crash vulnerability in SIP channel driver
On Tue, Nov 22, 2011 at 11:19:00PM +0200, Tzafrir Cohen wrote: > On Tue, Nov 22, 2011 at 09:15:16PM +0100, Moritz Mühlenhoff wrote: > > On Tue, Nov 01, 2011 at 08:31:00AM +0100, Moritz Muehlenhoff wrote: > > > Package: asterisk > > > Severity: grave > > > Tags: security > > > > > > Please see http://downloads.asterisk.org/pub/security/AST-2011-012.html > > > > > > Apparently stable/oldstable is not affected, please but double-check. > > > > Asterisk maintainers, did you get confirmation from upstream? > > Yes, as per the advisory. 1.6.2 is still supported for security issues > by upstream. Ok, I've updated the security tracker. Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Bug#647252: CVE-2011-4063: Remote crash vulnerability in SIP channel driver
On Tue, Nov 22, 2011 at 09:15:16PM +0100, Moritz Mühlenhoff wrote: > On Tue, Nov 01, 2011 at 08:31:00AM +0100, Moritz Muehlenhoff wrote: > > Package: asterisk > > Severity: grave > > Tags: security > > > > Please see http://downloads.asterisk.org/pub/security/AST-2011-012.html > > > > Apparently stable/oldstable is not affected, please but double-check. > > Asterisk maintainers, did you get confirmation from upstream? Yes, as per the advisory. 1.6.2 is still supported for security issues by upstream. -- Tzafrir Cohen icq#16849755 jabber:tzafrir.co...@xorcom.com +972-50-7952406 mailto:tzafrir.co...@xorcom.com http://www.xorcom.com iax:gu...@local.xorcom.com/tzafrir -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
