[Secure-testing-commits] r31087 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Jan 2 07:15:11 UTC 2015 

Author: carnil
Date: 2015-01-02 07:15:10 +0000 (Fri, 02 Jan 2015)
New Revision: 31087

Modified:
   data/CVE/list
Log:
Add fixed version for asterisk uploaded to t-p-u

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-01-02 06:34:08 UTC (rev 31086)
+++ data/CVE/list	2015-01-02 07:15:10 UTC (rev 31087)
@@ -792,6 +792,7 @@
 	RESERVED
 CVE-2014-9374 (Double free vulnerability in the WebSocket Server (res_http_websocket ...)
 	- asterisk 1:13.1.0~dfsg-1 (bug #773230)
+	[jessie] - asterisk 1:11.13.1~dfsg-2
 	[wheezy] - asterisk <not-affected> (Web socket code not yet present)
 	[squeeze] - asterisk <not-affected> (Web socket code not yet present)
 	NOTE: http://downloads.digium.com/pub/security/AST-2014-019.html
@@ -3804,11 +3805,13 @@
 	NOT-FOR-US: Wibu-Systems CodeMeter Runtime
 CVE-2014-8418 (The DB dialplan function in Asterisk Open Source 1.8.x before 1.8.32, ...)
 	- asterisk 1:13.1.0~dfsg-1 (bug #771463)
+	[jessie] - asterisk 1:11.13.1~dfsg-2
 	[squeeze] - asterisk <end-of-life> (Unsupported in squeeze-lts)
 	NOTE: https://issues.asterisk.org/jira/browse/ASTERISK-24534
 	NOTE: http://downloads.digium.com/pub/security/AST-2014-018.html
 CVE-2014-8417 (ConfBridge in Asterisk 11.x before 11.14.1, 12.x before 12.7.1, and ...)
 	- asterisk 1:13.1.0~dfsg-1 (bug #771463)
+	[jessie] - asterisk 1:11.13.1~dfsg-2
 	[squeeze] - asterisk <end-of-life> (Unsupported in squeeze-lts)
 	NOTE: https://issues.asterisk.org/jira/browse/ASTERISK-24490
 	NOTE: http://downloads.digium.com/pub/security/AST-2014-017.html
@@ -3828,6 +3831,7 @@
 	NOTE: http://downloads.digium.com/pub/security/AST-2014-015.html
 CVE-2014-8414 (ConfBridge in Asterisk 11.x before 11.14.1 and Certified Asterisk 11.6 ...)
 	- asterisk 1:13.1.0~dfsg-1 (bug #771463)
+	[jessie] - asterisk 1:11.13.1~dfsg-2
 	[squeeze] - asterisk <end-of-life> (Unsupported in squeeze-lts)
 	NOTE: https://issues.asterisk.org/jira/browse/ASTERISK-24440
 	NOTE: http://downloads.digium.com/pub/security/AST-2014-014.html
@@ -3840,6 +3844,7 @@
 	NOTE: http://downloads.digium.com/pub/security/AST-2014-013.html
 CVE-2014-8412 (The (1) VoIP channel drivers, (2) DUNDi, and (3) Asterisk Manager ...)
 	- asterisk 1:13.1.0~dfsg-1 (bug #771463)
+	[jessie] - asterisk 1:11.13.1~dfsg-2
 	[squeeze] - asterisk <end-of-life> (Unsupported in squeeze-lts)
 	NOTE: https://issues.asterisk.org/jira/browse/ASTERISK-24469
 	NOTE: http://downloads.digium.com/pub/security/AST-2014-012.html

More information about the Secure-testing-commits mailing list