[Pkg-voip-commits] r7890 - /asterisk/branches/lenny/debian/changelog

paravoid at alioth.debian.org paravoid at alioth.debian.org
Wed Dec 16 02:06:08 UTC 2009 

Author: paravoid
Date: Wed Dec 16 02:06:07 2009
New Revision: 7890

URL: http://svn.debian.org/wsvn/pkg-voip/?sc=1&rev=7890
Log:
Include changelog from the previously split-off +lenny1 security upload

Modified:
    asterisk/branches/lenny/debian/changelog

Modified: asterisk/branches/lenny/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-voip/asterisk/branches/lenny/debian/changelog?rev=7890&op=diff
==============================================================================
--- asterisk/branches/lenny/debian/changelog (original)
+++ asterisk/branches/lenny/debian/changelog Wed Dec 16 02:06:07 2009
@@ -1,17 +1,5 @@
-asterisk (1:1.4.21.2~dfsg-3+lenny1) stable-proposed-updates; urgency=low
-
-  * Multiple security fixes:
-    - "Information leak in IAX2 authentication", AST-2009-001, CVE-2009-0041.
-    - "Remote Crash Vulnerability in SIP channel driver", AST-2009-002.
-    - "SIP responses expose valid usernames", AST-2009-003, CVE-2008-3903.
-      (Closes: #522528)
-    - "SIP responses expose valid usernames", AST-2009-008, CVE-2009-3727.
-      (Closes: #554487)
-    - Stop shipping old static-http code in examples. Among other things, it
-      includes a vulnerable version of the prototype Javascript library.
-      AST-2009-009, CVE-2008-7220. (Closes: #554486)
-    - "RTP Remote Crash Vulnerability", AST-2009-010,CVE-2009-4055.
-      (Closes: #559103)
+asterisk (1:1.4.21.2~dfsg-3+lenny2) stable-proposed-updates; urgency=low
+
   * Fix broken IAX2 sequence number generation, an upstream regression of
     AST-2008-010's fix, included in the previous release of ours.
   * Backport a patch that fixes severe problems when using IAX2 encryption.
@@ -26,7 +14,24 @@
   * Use a disabled [directories] in asterisk.conf rather than an invalid
     [globals] (Closes: #532313).
 
- -- Faidon Liambotis <paravoid at debian.org>  Mon, 30 Nov 2009 05:26:29 +0200
+ -- Faidon Liambotis <paravoid at debian.org>  Wed, 16 Dec 2009 04:04:56 +0200
+
+asterisk (1:1.4.21.2~dfsg-3+lenny1) stable-security; urgency=high
+
+  * Multiple security fixes:
+    - "Information leak in IAX2 authentication", AST-2009-001, CVE-2009-0041.
+    - "Remote Crash Vulnerability in SIP channel driver", AST-2009-002.
+    - "SIP responses expose valid usernames", AST-2009-003, CVE-2008-3903.
+      (Closes: #522528)
+    - "SIP responses expose valid usernames", AST-2009-008, CVE-2009-3727.
+      (Closes: #554487)
+    - Stop shipping old static-http code in examples. Among other things, it
+      includes a vulnerable version of the prototype Javascript library.
+      AST-2009-009, CVE-2008-7220. (Closes: #554486)
+    - "RTP Remote Crash Vulnerability", AST-2009-010, CVE-2009-4055.
+      (Closes: #559103)
+
+ -- Faidon Liambotis <paravoid at debian.org>  Mon, 14 Dec 2009 01:11:44 +0200
 
 asterisk (1:1.4.21.2~dfsg-3) unstable; urgency=medium

More information about the Pkg-voip-commits mailing list