asterisk 1:1.6.2.0~rc2-0ubuntu1.1 source package in Ubuntu

Changelog

asterisk (1:1.6.2.0~rc2-0ubuntu1.1) karmic-security; urgency=low

  * SECURITY UPDATE: ACL not respected on SIP INVITE (LP: #491632).
    - debian/patches/AST-2009-007: Additional check in channels/chan_sip.c to
      check ACL for handling SIP INVITEs.  This blocks calls on networks
      intended to be prohibited, by configuration. Based on upstream patch.
    - AST-2009-007
    - CVE-2009-3723
  * SECURITY UPDATE: SIP responses expose valid usernames (LP: #491637).
    - debian/patches/AST-2009-008: Sanitise certain return of REGISTER message
      to stop a specially crafted series of requests returning valid usernames.
      Based on upstream patch.
    - AST-2009-008
    - CVE-2009-3727
  * SECURITY UPDATE:  RTP Remote Crash Vulnerability (LP: #493555).
    - debian/patches/AST-2009-010: Stops Asterisk from crashing when an RTP
      comfort noise payload containing 24 bytes or greater is recieved.
    - AST-2009-010
    - CVE-2009-4055
 -- Dave Walker (Daviey) <email address hidden>   Mon, 07 Dec 2009 12:23:36 +0000

Upload details

Uploaded by:
Dave Walker on 2009-12-08
Sponsored by:
Jamie Strandboge
Uploaded to:
Karmic
Original maintainer:
MOTU
Architectures:
any
Section:
comm
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
asterisk_1.6.2.0~rc2.orig.tar.gz 21.9 MiB 2c0b8de16dab004c697020bfb8bccf52ee06560e2e99ce3e212364001357e0e9
asterisk_1.6.2.0~rc2-0ubuntu1.1.diff.gz 64.2 KiB e05a3293b1161b7a55f3fa254ca6910cd1fd1eab4c8981521a10c2915750f72b
asterisk_1.6.2.0~rc2-0ubuntu1.1.dsc 2.1 KiB cc99e6dabeb58206943891e7cf723d817d1c51f78fed82b059f264a727a88dec

View changes file

Binary packages built by this source

asterisk: No summary available for asterisk in ubuntu karmic.

No description available for asterisk in ubuntu karmic.

asterisk-config: No summary available for asterisk-config in ubuntu karmic.

No description available for asterisk-config in ubuntu karmic.

asterisk-dbg: No summary available for asterisk-dbg in ubuntu karmic.

No description available for asterisk-dbg in ubuntu karmic.

asterisk-dev: No summary available for asterisk-dev in ubuntu karmic.

No description available for asterisk-dev in ubuntu karmic.

asterisk-doc: No summary available for asterisk-doc in ubuntu karmic.

No description available for asterisk-doc in ubuntu karmic.

asterisk-h323: No summary available for asterisk-h323 in ubuntu karmic.

No description available for asterisk-h323 in ubuntu karmic.

asterisk-sounds-main: No summary available for asterisk-sounds-main in ubuntu karmic.

No description available for asterisk-sounds-main in ubuntu karmic.