asterisk fixing CVE-2011-2536 for testing

Adam D. Barratt adam at adam-barratt.org.uk
Tue Jul 12 17:41:19 UTC 2011


Hi,

On Tue, 2011-07-05 at 16:37 +0200, Kilian Krause wrote:
> in order to allow asterisk to fix AST-2011-011 (CVE-2011-2536 - "Don't
> leak SIP username information", #632029) also in testing we are now
> still at 10 days due to the dependency on spandsp.
> 
> This bug was fixed in unstable, stable and oldstable are already
> discussed with Debian Security.
> 
> We'd like to request an urgency bump on spandsp to speed up the
> transition.

Apologies for the delay in processing this.  I've added a hint for
tonight's britney run.

Regards,

Adam




More information about the Pkg-voip-maintainers mailing list