← Back to branch summary

~ubuntu-branches/ubuntu/karmic/asterisk/karmic-security

  • Committer: Bazaar Package Importer
  • Author(s): Dave Walker (Daviey)
  • Date: 2009-12-07 12:23:36 UTC
  • Revision ID: james.westby@ubuntu.com-20091207122336-49opvbuf9fiprsyg
Tags: 1:1.6.2.0~rc2-0ubuntu1.1
https://launchpad.net/bugs/491632
https://launchpad.net/bugs/491637
https://launchpad.net/bugs/493555
* SECURITY UPDATE: ACL not respected on SIP INVITE (LP: #491632).
  - debian/patches/AST-2009-007: Additional check in channels/chan_sip.c to 
    check ACL for handling SIP INVITEs.  This blocks calls on networks 
    intended to be prohibited, by configuration. Based on upstream patch.
  - AST-2009-007
  - CVE-2009-3723
* SECURITY UPDATE: SIP responses expose valid usernames (LP: #491637).
  - debian/patches/AST-2009-008: Sanitise certain return of REGISTER message
    to stop a specially crafted series of requests returning valid usernames.
    Based on upstream patch.
  - AST-2009-008
  - CVE-2009-3727
* SECURITY UPDATE:  RTP Remote Crash Vulnerability (LP: #493555).
  - debian/patches/AST-2009-010: Stops Asterisk from crashing when an RTP
    comfort noise payload containing 24 bytes or greater is recieved.
  - AST-2009-010
  - CVE-2009-4055
Filename Latest Rev Last Changed Committer Comment Size
..
asterisk-core-sounds-en-gsm-1.4.16.tar.gz 1.2.4 14 years ago Bazaar Package Importer Import upstream version 1.6.2.0~rc2 1.6 MB Diff Download File
asterisk-moh-opsound-wav.tar.gz 1.2.4 14 years ago Bazaar Package Importer Import upstream version 1.6.2.0~rc2 14.6 MB Diff Download File
Makefile 1.2.4 14 years ago Bazaar Package Importer Import upstream version 1.6.2.0~rc2 6.5 KB Diff Download File
sounds.xml 1.2.3 14 years ago Bazaar Package Importer Import upstream version 1.6.2.0~dfsg~beta4 5.3 KB Diff Download File