Comment 0 for bug 705014
Revision history for this message
| Darik Horn (dajhorn) wrote CVS-2011-0495: AST-2011-001: Asterisk: Stack based buffer overflow by forming an outgoing SIP request with specially-crafted caller ID information | #0 |
Binary package hint: asterisk
All of the Asterisk packages in Ubuntu need to be patched for AST-2011-001, which is tentatively CVE-2011-0495.
See: http://
Although Asterisk in currently in the universe repository, it would be nevertheless be appreciated to get the security fix. Debian already has the fix pending in their pkg-voip tree.