[Pkg-voip-commits] r7774 - /asterisk/branches/lenny/debian/changelog
paravoid at alioth.debian.org
paravoid at alioth.debian.org
Sat Nov 7 17:37:47 UTC 2009
Author: paravoid
Date: Sat Nov 7 17:37:46 2009
New Revision: 7774
URL: http://svn.debian.org/wsvn/pkg-voip/?sc=1&rev=7774
Log:
Add CVE for AST-2009-008
Modified:
asterisk/branches/lenny/debian/changelog
Modified: asterisk/branches/lenny/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-voip/asterisk/branches/lenny/debian/changelog?rev=7774&op=diff
==============================================================================
--- asterisk/branches/lenny/debian/changelog (original)
+++ asterisk/branches/lenny/debian/changelog Sat Nov 7 17:37:46 2009
@@ -1,11 +1,11 @@
-asterisk (1:1.4.21.2~dfsg-3+lenny1) UNRELEASED; urgency=low
+asterisk (1:1.4.21.2~dfsg-3+lenny1) stable-proposed-updates; urgency=low
* Multiple security fixes:
- "Information leak in IAX2 authentication", AST-2009-001, CVE-2009-0041.
- "Remote Crash Vulnerability in SIP channel driver", AST-2009-002.
- "SIP responses expose valid usernames", AST-2009-003, CVE-2008-3903.
(Closes: #522528)
- - "SIP responses expose valid usernames", AST-2009-008.
+ - "SIP responses expose valid usernames", AST-2009-008, CVE-2009-3727.
(Closes: #554487)
- Stop shipping old static-http code in examples. Among other things, it
includes a vulnerable version of the prototype Javascript library.
More information about the Pkg-voip-commits
mailing list