Comment 3 for bug 1022360

Revision history for this message
In , Chainsaw (chainsaw) wrote :

+*asterisk-10.5.2 (06 Jul 2012)
+*asterisk-1.8.13.1 (06 Jul 2012)
+
+ 06 Jul 2012; Tony Vroon <email address hidden> -asterisk-1.8.13.0.ebuild,
+ -asterisk-1.8.13.0-r1.ebuild, +asterisk-1.8.13.1.ebuild,
+ -asterisk-10.5.1.ebuild, +asterisk-10.5.2.ebuild:
+ Upgrades on the 1.8 & 10 branches to address a potential resource leak when a
+ re-invite transaction is not completed (AST-2012-010) and on the 1.8 branch
+ only for a remote crash vulnerability in the voicemail application
+ (AST-2012-011). Both covered under CVE-2012-3812. Removed any non-stable
+ vulnerable ebuild.

Arches, please test and mark stable:
=net-misc/asterisk-1.8.13.1

Last arch, please remove:
=net-misc/asterisk-1.8.12.1