Open Asterisk vulnerabilities
Moritz Muehlenhoff
jmm at inutil.org
Sun May 27 10:42:20 UTC 2007
Hi,
There's a constant flow of vulnerabilities in Asterisk, which are only
adressed by you in unstable. This needs to change, a package like Asterisk
is impossible to test for the Security Team. We need you to prepare a
stable-security update for every vulnerability you address in unstable.
According to the Debian Security Tracker the current issues are open
in Etch:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2293
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2297
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1306
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1561
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1594
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1595
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2294
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2488
Cheers,
Moritz
More information about the Pkg-voip-maintainers
mailing list