-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sat, 23 Apr 2011 17:35:01 +0300 Source: asterisk Binary: asterisk asterisk-h323 asterisk-doc asterisk-dev asterisk-dbg asterisk-sounds-main asterisk-config Architecture: armel Version: 1:1.6.2.9-2+squeeze2 Distribution: squeeze-security Urgency: high Maintainer: armel Build Daemon (alwyn) Changed-By: Tzafrir Cohen Description: asterisk - Open Source Private Branch Exchange (PBX) asterisk-config - Configuration files for Asterisk asterisk-dbg - Debugging symbols for Asterisk asterisk-dev - Development files for Asterisk asterisk-doc - Source code documentation for Asterisk asterisk-h323 - H.323 protocol support for Asterisk asterisk-sounds-main - Core Sound files for Asterisk (English) Closes: 614580 618790 618791 623775 Changes: asterisk (1:1.6.2.9-2+squeeze2) stable-security; urgency=high . * Patch AST-2011-002 (CVE-2011-1147): Multiple crash vulnerabilities in UDPTL code (Closes: #614580). * Patch AST-2011-005 (CVE-2011-1507): Resource exhaustion in Asterisk Manager Interface. * Patch AST-2011-005-p2: Resource exhaustion in chan_skinny and AJAM - second part of the above (Closes: #618790). * Patch AST-2011-006: Check for "system" privilege in the manager interface (Closes: #623775). * Patches AST-2011-003, manager_manager_bugfix_reload - its pre-requirements. * Patch AST-2011-004: Remote crash vulnerability in TCP/TLS server (Closes: #618791). Checksums-Sha1: 2753c1acf6ac50112cd6925bb47b7a0202474d67 3566724 asterisk_1.6.2.9-2+squeeze2_armel.deb 78f9e194fd8369d92a3a478e76ef038e8384cbf0 532462 asterisk-h323_1.6.2.9-2+squeeze2_armel.deb db19f9ebaecc98553471fa9e3a38bcdd311bc4c2 20129058 asterisk-dbg_1.6.2.9-2+squeeze2_armel.deb Checksums-Sha256: 51d86fb08410adcb17853e17da9b2a27cdf7934c36d39878d3e044369090d908 3566724 asterisk_1.6.2.9-2+squeeze2_armel.deb 53fc2847ce5c6d70e62d35962fcaa92c12eaa841edbfc426f4c8d573a0a90e16 532462 asterisk-h323_1.6.2.9-2+squeeze2_armel.deb 29eecc6653091ecc6b81fa7678c332ccc2d0dad6fde866ed33e0e23c1cd05880 20129058 asterisk-dbg_1.6.2.9-2+squeeze2_armel.deb Files: 6cf87ef84e61f01c0b00493fb530d8e3 3566724 comm optional asterisk_1.6.2.9-2+squeeze2_armel.deb 4c21eea6f407e92f5f320efc15913f85 532462 comm optional asterisk-h323_1.6.2.9-2+squeeze2_armel.deb dc64fc04b959731e1da88eebfbce2f22 20129058 debug extra asterisk-dbg_1.6.2.9-2+squeeze2_armel.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iQIcBAEBCAAGBQJNsx9LAAoJEKQSVCVrqFyYtBkP/1xPl7AbSJRqf7zKdGNxuKyr 0aL2f2oyCJub4Pdb8/CwlJLtS7pvagcfhbwO5GOS+QHyrPrh2y+s83Oqd54BqOeb q4rbaDWJ/fp3DlSl7ZBJPmZSNjIyuGFuPzRC9ozt62G/cdfz86Qe69Xq5UHTprEN 1eFEf37TsCcEWhWQ/C8in7zfvewzHHUt/yeLazx+S3xivAMIlTcmBXhfSHfVl7Vo GvxHoglH62NR95ZnhBwfReJ3YakUGVTsxcegirBM060boNaxZs/6VgZsyjUKJqIe BGQlakGQEkhZi7m4etI9pDH2vVPIpMNysr6tS/rFTe39ac4fC/78nFyH9+dHc8uM B7N3YRPXCu8G4kndimBu9AS3BYFL+2jcDjOPFj/O0qM0EeC6bsQaxkJmu+i4yqoT 9iTUx+OaXp2Mx5T+mwTZo0UpBMJe/IIhxBd+MTIOURTD6qiR8Y1S0Dgk62qRLEGC pGJtcToch/ZzPx4PnApNdqujO+SmO8pIGdUKzMOtKSLSsKgqBFG92HIH3PSuwgtt ngV0Hys5bJrt1opiUu08y4HLjpc/WRU4oOQYyBTSKLJmZgRxR/w5WWNcJkNAN6qz G3ESuxgIDmvcFd5mdr3UUlJFH5naeLBm5azK0+Jp3OOcUnxZZpW461JdQwiW6T0P XGIMYbHL30GkbyYG1Wpr =+qGZ -----END PGP SIGNATURE-----