[Secure-testing-commits] r21869 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Sun Apr 7 19:51:21 UTC 2013
Author: carnil
Date: 2013-04-07 19:51:21 +0000 (Sun, 07 Apr 2013)
New Revision: 21869
Modified:
data/CVE/list
Log:
asterisk issues fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-04-07 19:48:18 UTC (rev 21868)
+++ data/CVE/list 2013-04-07 19:51:21 UTC (rev 21869)
@@ -161,7 +161,7 @@
CVE-2013-2687
RESERVED
CVE-2013-2686 (main/http.c in the HTTP server in Asterisk Open Source 1.8.x before ...)
- - asterisk <unfixed> (bug #704114)
+ - asterisk 1:1.8.13.1~dfsg-2 (bug #704114)
[squeeze] - asterisk <not-affected> (httpd code does not read HTTP POST variables)
NOTE: https://issues.asterisk.org/jira/browse/ASTERISK-20967
CVE-2013-2685 (Stack-based buffer overflow in res/res_format_attr_h264.c in Asterisk ...)
@@ -1161,7 +1161,7 @@
CVE-2013-2265
RESERVED
CVE-2013-2264 (The SIP channel driver in Asterisk Open Source 1.8.x before 1.8.20.2, ...)
- - asterisk <unfixed> (low; bug #704114)
+ - asterisk 1:1.8.13.1~dfsg-2 (low; bug #704114)
NOTE: https://issues.asterisk.org/jira/browse/ASTERISK-21013
CVE-2013-2263 (Unspecified vulnerability in Citrix Access Gateway Standard Edition ...)
NOT-FOR-US: Citrix Access Gateway
@@ -7821,11 +7821,11 @@
NOT-FOR-US: VMware View
CVE-2012-5977 (Asterisk Open Source 1.8.x before 1.8.19.1, 10.x before 10.11.1, and ...)
{DSA-2605-1}
- - asterisk <unfixed> (bug #697230)
+ - asterisk 1:1.8.13.1~dfsg-2 (bug #697230)
NOTE: http://downloads.asterisk.org/pub/security/AST-2012-015.pdf
CVE-2012-5976 (Multiple stack consumption vulnerabilities in Asterisk Open Source ...)
{DSA-2605-1}
- - asterisk <unfixed> (bug #697230)
+ - asterisk 1:1.8.13.1~dfsg-2 (bug #697230)
NOTE: http://downloads.digium.com/pub/security/AST-2012-014.pdf
CVE-2012-5975 (The SSH USERAUTH CHANGE REQUEST feature in SSH Tectia Server 6.0.4 ...)
NOT-FOR-US: Tectia SSH
More information about the Secure-testing-commits
mailing list