[Pkg-voip-commits] r8715 - in /asterisk/trunk/debian: changelog patches/AST-2011-001

tzafrir at alioth.debian.org tzafrir at alioth.debian.org
Wed Jan 19 23:20:19 UTC 2011 

Author: tzafrir
Date: Wed Jan 19 23:20:18 2011
New Revision: 8715

URL: http://svn.debian.org/wsvn/pkg-voip/?sc=1&rev=8715
Log:
Update CVE for AST-2011-001

Modified:
    asterisk/trunk/debian/changelog
    asterisk/trunk/debian/patches/AST-2011-001

Modified: asterisk/trunk/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-voip/asterisk/trunk/debian/changelog?rev=8715&op=diff
==============================================================================
--- asterisk/trunk/debian/changelog (original)
+++ asterisk/trunk/debian/changelog Wed Jan 19 23:20:18 2011
@@ -1,6 +1,6 @@
-asterisk (1:1.6.2.9-3) UNRELEASED; urgency=low
-
-  * AST-2011-001: URI-encode buffer overflow (Closes: #610487).
+asterisk (1:1.6.2.9-3) unstable; urgency=high
+
+  * CVE-2011-0495: URI-encode buffer overflow (Closes: #610487).
 
  -- Tzafrir Cohen <tzafrir at debian.org>  Wed, 19 Jan 2011 01:48:21 +0200
 

Modified: asterisk/trunk/debian/patches/AST-2011-001
URL: http://svn.debian.org/wsvn/pkg-voip/asterisk/trunk/debian/patches/AST-2011-001?rev=8715&op=diff
==============================================================================
--- asterisk/trunk/debian/patches/AST-2011-001 (original)
+++ asterisk/trunk/debian/patches/AST-2011-001 Wed Jan 19 23:20:18 2011
@@ -1,11 +1,17 @@
 Description: Prevent buffer overflows in ast_uri_encode()
-Origin: http://svnview.digium.com/svn/asterisk?view=revision&revision=302147
+Origin: http://downloads.asterisk.org/pub/security/AST-2011-001-1.6.2.diff
+Bug-Debian: http://bugs.debian.org/610487
 
-Index: main/utils.c
-===================================================================
---- a/main/utils.c	(revision 302146)
-+++ b/main/utils.c	(revision 302147)
-@@ -386,28 +386,27 @@
+When forming an outgoing SIP request while in pedantic mode, a stack
+buffer can be made to overflow if supplied with carefully crafted caller
+ID information. This vulnerability also affects the URIENCODE dialplan
+function and in some versions of asterisk, the AGI dialplan application
+as well. The ast_uri_encode function does not properly respect the size
+of its output buffer and can write past the end of it when encoding URIs.
+
+--- a/main/utils.c
++++ b/main/utils.c
+@@ -385,28 +385,27 @@ char *ast_uri_encode(const char *string,
  	char *reserved = ";/?:@&=+$,# ";	/* Reserved chars */
  
   	const char *ptr  = string;	/* Start with the string */
@@ -47,4 +53,3 @@
  	return outbuf;
  }
  
-

More information about the Pkg-voip-commits mailing list