Asterisk 1.2.16 fixes a recently discovered security vulnerability
Bug #89863 reported by
magilus
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
asterisk (Ubuntu) |
Fix Released
|
Undecided
|
Kees Cook | ||
Dapper |
Fix Released
|
Undecided
|
Kees Cook | ||
Edgy |
Fix Released
|
Undecided
|
magilus | ||
Feisty |
Fix Released
|
Undecided
|
Kees Cook |
Bug Description
Binary package hint: asterisk
Asterisk 1.2.16 fixes a recently discovered security vulnerability. See http://
Changed in asterisk: | |
status: | Unconfirmed → Confirmed |
Changed in asterisk: | |
assignee: | nobody → pirast |
status: | Unconfirmed → Confirmed |
Changed in asterisk: | |
status: | Confirmed → In Progress |
Changed in asterisk: | |
assignee: | keescook → pirast |
Changed in asterisk: | |
status: | In Progress → Fix Committed |
Changed in asterisk: | |
status: | Fix Committed → Fix Released |
Changed in asterisk: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
Patch available here: http:// svn.digium. com/view/ asterisk/ branches/ 1.2/channels/ chan_sip. c?r1=56230& r2=57475
I will care of the Edgy release today.
For Feisty, I'd suggest to take 1.2.16 from Debian but that a) needs a UVF exception and b) we have to apply the ubuntu changes again