Asterisk 1.2.17 fixes SIP DoS vulnerability
Bug #94792 reported by
magilus
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
asterisk (Ubuntu) |
Fix Released
|
High
|
Kees Cook | ||
Breezy |
Invalid
|
Wishlist
|
Unassigned | ||
Dapper |
Fix Released
|
High
|
Kees Cook | ||
Edgy |
Fix Released
|
High
|
Kees Cook | ||
Feisty |
Fix Released
|
High
|
Kees Cook |
Bug Description
Binary package hint: asterisk
Asterisk 1.2.17 fixes a SIP DoS vulnerability.
See the announcement at http://
CVE References
Changed in asterisk: | |
assignee: | nobody → pirast |
status: | Unconfirmed → Confirmed |
importance: | Undecided → High |
assignee: | nobody → pirast |
Changed in asterisk: | |
assignee: | nobody → keescook |
importance: | Undecided → Medium |
status: | Unconfirmed → Confirmed |
importance: | Medium → High |
To post a comment you must log in.
Security change in ChangeLog:
2007-03-14 16:38 +0000 [r58896] Russell Bryant <email address hidden>
* SECURITY: Add a note to the security file that the Asterisk CLI
and log files may contain sensitive information, and that people
should keep this in mind.