Bug#647252: CVE-2011-4063: Remote crash vulnerability in SIP channel driver

Moritz Muehlenhoff jmm at inutil.org
Tue Nov 22 21:24:46 UTC 2011


On Tue, Nov 22, 2011 at 11:19:00PM +0200, Tzafrir Cohen wrote:
> On Tue, Nov 22, 2011 at 09:15:16PM +0100, Moritz Mühlenhoff wrote:
> > On Tue, Nov 01, 2011 at 08:31:00AM +0100, Moritz Muehlenhoff wrote:
> > > Package: asterisk
> > > Severity: grave
> > > Tags: security
> > > 
> > > Please see http://downloads.asterisk.org/pub/security/AST-2011-012.html
> > > 
> > > Apparently stable/oldstable is not affected, please but double-check.
> > 
> > Asterisk maintainers, did you get confirmation from upstream?
> 
> Yes, as per the advisory. 1.6.2 is still supported for security issues
> by upstream.

Ok, I've updated the security tracker.

Cheers,
        Moritz





More information about the Pkg-voip-maintainers mailing list