asterisk 1:1.6.2.7-1ubuntu1.2 source package in Ubuntu
Changelog
asterisk (1:1.6.2.7-1ubuntu1.2) maverick-security; urgency=low
* SECURITY UPDATE: denial of service and possible code exection via
crafted UDPTL packet
- debian/patches/AST-2011-002-1.6.2.diff: properly calculate lengths in
main/udptl.c.
- CVE-2011-1147
* SECURITY UPDATE: denial of service via manager session with invalid
data
- debian/patches/AST-2011-003-1.6.2.diff: check for errors in
main/manager.c.
- CVE-2011-1174
* SECURITY UPDATE: denial of service via many short TLS sessions
- debian/patches/AST-2011-004-1.6.2.diff: gracefully handle failures
in main/tcptls.c.
- CVE-2011-1175
* SECURITY UPDATE: denial of service via a series of TCP connections
- debian/patches/AST-2011-005-1.6.2.diff: add timeouts and session
limits to main/manager.c, configs/manager.conf.sample,
channels/chan_sip.c, channels/chan_skinny.c, main/http.c,
configs/{skinny,sip,http}.conf.sample.
- CVE-2011-1507
* SECURITY UPDATE: remote command execution via incomplete system
privilege check
- debian/patches/AST-2011-006-1.6.2.diff: correctly check privileges in
main/manager.c.
- CVE-2011-1599
* SECURITY UPDATE: denial of service via crafted packet and SIP channel
driver
- debian/patches/AST-2011-008.diff: set proper length in
channels/chan_sip.c.
- CVE-2011-2529
* SECURITY UPDATE: denial of service and possible code execution via
IAX2 channel driver crafted frame
- debian/patches/AST-2011-010-1.6.2.diff: validate options in
channels/chan_iax2.c, main/features.c.
- CVE-2011-2535
* SECURITY UPDATE: account name enumeration
- debian/patches/AST-2011-011-1.6.2.diff: adjust responses in
channels/chan_sip.c.
- CVE-2011-2536
-- Marc Deslauriers <email address hidden> Tue, 12 Jul 2011 15:44:59 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Maverick
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- comm
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| asterisk_1.6.2.7.orig.tar.gz | 22.2 MiB | 217f5fecd2a032c39f401ccdeb8fcdc31a94b44a504d1c567807a527bfacf117 |
| asterisk_1.6.2.7-1ubuntu1.2.debian.tar.gz | 78.2 KiB | ff3703df39a212555ea5b3f9183b6460bb15c7748f616ea6694f1598e8d3b605 |
| asterisk_1.6.2.7-1ubuntu1.2.dsc | 2.7 KiB | d83e2c9865e4dc0b6337540e940e728c51f04950463990e16b4e35f1f8fd7c10 |
Available diffs
Binary packages built by this source
- asterisk: No summary available for asterisk in ubuntu maverick.
No description available for asterisk in ubuntu maverick.
- asterisk-config: No summary available for asterisk-config in ubuntu maverick.
No description available for asterisk-config in ubuntu maverick.
- asterisk-dbg: No summary available for asterisk-dbg in ubuntu maverick.
No description available for asterisk-dbg in ubuntu maverick.
- asterisk-dev: No summary available for asterisk-dev in ubuntu maverick.
No description available for asterisk-dev in ubuntu maverick.
- asterisk-doc: No summary available for asterisk-doc in ubuntu maverick.
No description available for asterisk-doc in ubuntu maverick.
- asterisk-h323: No summary available for asterisk-h323 in ubuntu maverick.
No description available for asterisk-h323 in ubuntu maverick.
- asterisk-sounds-main: No summary available for asterisk-sounds-main in ubuntu maverick.
No description available for asterisk-
sounds- main in ubuntu maverick.
