[Pkg-voip-commits] r8715 - in /asterisk/trunk/debian: changelog patches/AST-2011-001
tzafrir at alioth.debian.org
tzafrir at alioth.debian.org
Wed Jan 19 23:20:19 UTC 2011
Author: tzafrir
Date: Wed Jan 19 23:20:18 2011
New Revision: 8715
URL: http://svn.debian.org/wsvn/pkg-voip/?sc=1&rev=8715
Log:
Update CVE for AST-2011-001
Modified:
asterisk/trunk/debian/changelog
asterisk/trunk/debian/patches/AST-2011-001
Modified: asterisk/trunk/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-voip/asterisk/trunk/debian/changelog?rev=8715&op=diff
==============================================================================
--- asterisk/trunk/debian/changelog (original)
+++ asterisk/trunk/debian/changelog Wed Jan 19 23:20:18 2011
@@ -1,6 +1,6 @@
-asterisk (1:1.6.2.9-3) UNRELEASED; urgency=low
-
- * AST-2011-001: URI-encode buffer overflow (Closes: #610487).
+asterisk (1:1.6.2.9-3) unstable; urgency=high
+
+ * CVE-2011-0495: URI-encode buffer overflow (Closes: #610487).
-- Tzafrir Cohen <tzafrir at debian.org> Wed, 19 Jan 2011 01:48:21 +0200
Modified: asterisk/trunk/debian/patches/AST-2011-001
URL: http://svn.debian.org/wsvn/pkg-voip/asterisk/trunk/debian/patches/AST-2011-001?rev=8715&op=diff
==============================================================================
--- asterisk/trunk/debian/patches/AST-2011-001 (original)
+++ asterisk/trunk/debian/patches/AST-2011-001 Wed Jan 19 23:20:18 2011
@@ -1,11 +1,17 @@
Description: Prevent buffer overflows in ast_uri_encode()
-Origin: http://svnview.digium.com/svn/asterisk?view=revision&revision=302147
+Origin: http://downloads.asterisk.org/pub/security/AST-2011-001-1.6.2.diff
+Bug-Debian: http://bugs.debian.org/610487
-Index: main/utils.c
-===================================================================
---- a/main/utils.c (revision 302146)
-+++ b/main/utils.c (revision 302147)
-@@ -386,28 +386,27 @@
+When forming an outgoing SIP request while in pedantic mode, a stack
+buffer can be made to overflow if supplied with carefully crafted caller
+ID information. This vulnerability also affects the URIENCODE dialplan
+function and in some versions of asterisk, the AGI dialplan application
+as well. The ast_uri_encode function does not properly respect the size
+of its output buffer and can write past the end of it when encoding URIs.
+
+--- a/main/utils.c
++++ b/main/utils.c
+@@ -385,28 +385,27 @@ char *ast_uri_encode(const char *string,
char *reserved = ";/?:@&=+$,# "; /* Reserved chars */
const char *ptr = string; /* Start with the string */
@@ -47,4 +53,3 @@
return outbuf;
}
-
More information about the Pkg-voip-commits
mailing list