[Secure-testing-commits] r39870 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-02-23 21:21:45 +0000 (Tue, 23 Feb 2016)
New Revision: 39870

Modified:
   data/CVE/list
Log:
CVE-2016-2316 was assigned for AST-2016-002/asterisk

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-02-23 21:10:25 UTC (rev 39869)
+++ data/CVE/list	2016-02-23 21:21:45 UTC (rev 39870)
@@ -613,8 +613,6 @@
 	RESERVED
 CVE-2016-2319
 	RESERVED
-CVE-2016-2316 (chan_sip in Asterisk Open Source 1.8.x, 11.x before 11.21.1, 12.x, and ...)
-	TODO: check
 CVE-2016-2315
 	RESERVED
 CVE-2016-2314 (GlobespanVirata ftpd 1.0, as used on Huawei SmartAX MT882 devices ...)
@@ -957,7 +955,7 @@
 	NOTE: issue was introduced in 2006 with commit 0f5e4e47, so squeeze and previous also vulnerable
 	NOTE: patch for 11 / jessie: https://code.asterisk.org/code/changelog/asterisk?cs=da2573a3779425654543d6ac4c4dd6871ce16720
 	NOTE: all versions vulnerable, backport required for wheezy
-CVE-2016-XXXX [AST-2016-002: File descriptor exhaustion in chan_sip]
+CVE-2016-2316 [AST-2016-002: File descriptor exhaustion in chan_sip]
 	- asterisk <unfixed>
 	[jessie] - asterisk <no-dsa> (Minor issue)
 	[wheezy] - asterisk <no-dsa> (Minor issue)