Debian
asterisk package

asterisk 1:1.8.13.1~dfsg-2 source package in Debian

Changelog

asterisk (1:1.8.13.1~dfsg-2) unstable; urgency=high


  * Patches backported from Asterisk 1.8.19.1 (Closes: #697230):
    - Patch AST-2012-014 (CVE-2012-5976) - fixes Crashes due to large stack
      allocations when using TCP.
      The following two fixes were also pulled in order to easily apply it:
      - Patch fix-sip-tcp-no-FILE - Switch to reading with a recv loop
      - Patch fix-sip-tls-leak - Memory leak in the SIP TLS code
    - Patch AST-2012-015 (CVE-2012-5977) - Denial of Service Through
      Exploitation of Device State Caching
  * Patch powerpcspe: Fix OSARCH for powerpcspe (Closes: #701505).
  * README.Debian: document running the testsuite. 
  * Patch fix_xmpp_19532: fix a crash of the XMPP code (Closes: #545272).
  * Patches backported from Asterisk 1.8.20.2 (Closes: #704114):
    - Patch AST-2013-002 (CVE-2012-2686): Prevent DoS in HTTP server with
      a large POST.
    - Patch AST-2013-003 (CVE-2012-2264): Prevent username disclosure in
      SIP channel driver.
  * Patch bluetooth_bind - fix breakage of chan_mobile (Closes: #614786).

 -- Tzafrir Cohen <email address hidden>  Sat, 06 Apr 2013 14:15:41 +0300

Upload details

Uploaded by:
Debian VoIP Team
Uploaded to:
Sid
Original maintainer:
Debian VoIP Team
Architectures:
any all
Section:
comm
Urgency:
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Downloads

File Size SHA-256 Checksum
asterisk_1.8.13.1~dfsg-2.dsc 2.9 KiB 89849cdc7dbfe6a58641d00f47451d8b14b33323d11869cffaf353cff7c3d324
asterisk_1.8.13.1~dfsg.orig.tar.gz 7.1 MiB 7f6c8f42660de1e588eb1e583b33636342741e89ba5e8205eccb5abf608fbea2
asterisk_1.8.13.1~dfsg-2.debian.tar.gz 374.7 KiB 164fa8209cf09ca0d55ccff68ca5c0106925fb859778e4cdb8c11db70ded35a4

No changes file available.

Binary packages built by this source