-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Thu, 10 Feb 2011 17:06:37 +0200 Source: asterisk Binary: asterisk asterisk-h323 asterisk-doc asterisk-dev asterisk-dbg asterisk-sounds-main asterisk-config Architecture: mips Version: 1:1.4.21.2~dfsg-3+lenny2 Distribution: lenny-security Urgency: high Maintainer: mips Build Daemon (corelli) Changed-By: Faidon Liambotis Description: asterisk - Open Source Private Branch Exchange (PBX) asterisk-config - Configuration files for Asterisk asterisk-dbg - Debugging symbols for Asterisk asterisk-dev - Development files for Asterisk asterisk-doc - Source code documentation for Asterisk asterisk-h323 - H.323 protocol support for Asterisk asterisk-sounds-main - Core Sound files for Asterisk (English) Closes: 610487 Changes: asterisk (1:1.4.21.2~dfsg-3+lenny2) oldstable-security; urgency=high . [ Tzafrir Cohen ] * AST-2011-001/CVE-2011-0495: Stack buffer overflow in SIP channel driver (Closes: #610487) * Backport a one-liner patch from upstream (ast_uri_validhex) to successfully apply the AST-2011-001 patch. Checksums-Sha1: 9f7ea3137eca24a589bfd40e4808977eb2f4e0ac 2484628 asterisk_1.4.21.2~dfsg-3+lenny2_mips.deb 664e68f75fb7a34cccb95cb9a17a6700f6d92993 381768 asterisk-h323_1.4.21.2~dfsg-3+lenny2_mips.deb 9fd96885939667c22ac59db41e094c8ca56500ff 13442024 asterisk-dbg_1.4.21.2~dfsg-3+lenny2_mips.deb Checksums-Sha256: 79292e77a5d3ef3a0f46862e35b27486852ee857146e22763b3fe3b4dfd2f5f2 2484628 asterisk_1.4.21.2~dfsg-3+lenny2_mips.deb d256d3c212961c8546b3b7a5ded5ea4783ce3c53dd136ddc1f6d0201bee8216a 381768 asterisk-h323_1.4.21.2~dfsg-3+lenny2_mips.deb f1e23fae394ef2cf1c59c4433b8ddaf1d2168e67bf66351622e9e4191fc9b013 13442024 asterisk-dbg_1.4.21.2~dfsg-3+lenny2_mips.deb Files: b147de59f537cdc8146bffecbd0f2482 2484628 comm optional asterisk_1.4.21.2~dfsg-3+lenny2_mips.deb 60f8621248ca92a1aecc3c4b8d89f749 381768 comm optional asterisk-h323_1.4.21.2~dfsg-3+lenny2_mips.deb 19c15f8ecb7dabdbfef62d911fc0c0ac 13442024 devel extra asterisk-dbg_1.4.21.2~dfsg-3+lenny2_mips.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAk1cEY8ACgkQXm3vHE4uylrYiACgtGrndwNLMzW8fvpBOCj0eC2H oxgAoOMKgjSSoTUkfC4G+S6gTu+ygOB3 =WuoZ -----END PGP SIGNATURE-----