[Pkg-voip-commits] r4177 - in asterisk/branches/etch/debian: . patches

paravoid at alioth.debian.org paravoid at alioth.debian.org
Tue Aug 21 03:01:37 UTC 2007 

Author: paravoid
Date: 2007-08-21 03:01:36 +0000 (Tue, 21 Aug 2007)
New Revision: 4177

Modified:
   asterisk/branches/etch/debian/changelog
   asterisk/branches/etch/debian/patches/ASA-2007-011.dpatch
Log:
CVE-2007-2297 is a duplicate of CVE-2007-1594, mark it as fixed

Modified: asterisk/branches/etch/debian/changelog
===================================================================
--- asterisk/branches/etch/debian/changelog	2007-08-21 02:56:41 UTC (rev 4176)
+++ asterisk/branches/etch/debian/changelog	2007-08-21 03:01:36 UTC (rev 4177)
@@ -8,7 +8,7 @@
       denial of service (crash) via a SIP INVITE message with an SDP
       containing one valid and one invalid IP address. (CVE-2007-1561)
     - channels/chan_sip.c: Only try to handle a response if it has a response
-      code. (ASA-2007-011, CVE-2007-1594)
+      code. (ASA-2007-011, CVE-2007-1594, CVE-2007-2297)
     - manager.c: Don't crash if a manager connection provides a username that
       exists in manager.conf but does not have a password, and also requests
       MD5 authentication. (ASA-2007-012, CVE-2007-2294)
@@ -30,7 +30,7 @@
     Added a build dependency on that package to avoid regressions on a security
     upload.
 
- -- Faidon Liambotis <paravoid at debian.org>  Tue, 21 Aug 2007 05:55:16 +0300
+ -- Faidon Liambotis <paravoid at debian.org>  Tue, 21 Aug 2007 06:00:45 +0300
 
 asterisk (1:1.2.13~dfsg-2) unstable; urgency=low
 

Modified: asterisk/branches/etch/debian/patches/ASA-2007-011.dpatch
===================================================================
--- asterisk/branches/etch/debian/patches/ASA-2007-011.dpatch	2007-08-21 02:56:41 UTC (rev 4176)
+++ asterisk/branches/etch/debian/patches/ASA-2007-011.dpatch	2007-08-21 03:01:36 UTC (rev 4177)
@@ -3,7 +3,7 @@
 ##
 ## DP: channels/chan_sip.c: Only try to handle a response if it has a response code. 
 ## DP: r59194 in upstream's SVN
-## DP: Security fix, ASA-2007-011, CVE-2007-1594
+## DP: Security fix, ASA-2007-011, CVE-2007-1594, CVE-2007-2297
 
 @DPATCH@
 Index: channels/chan_sip.c

More information about the Pkg-voip-commits mailing list