CVE-2015-1558 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-1558): Asterisk Open Source 12.x before 12.8.1 and 13.x before 13.1.1, when using the PJSIP channel driver, does not properly reclaim RTP ports, which allows remote authenticated users to cause a denial of service (file descriptor consumption) via an SDP offer containing only incompatible codecs. @maintainers: Convenience filing; The package is masked for testing, please close the bug once bump and cleanup is done
+*asterisk-13.1.1 (11 Feb 2015) +*asterisk-12.8.1 (11 Feb 2015) + + 11 Feb 2015; Tony Vroon <chainsaw@gentoo.org> -asterisk-11.14.2.ebuild, + -asterisk-11.14.2-r1.ebuild, -asterisk-11.15.0.ebuild, + -asterisk-12.7.2.ebuild, -asterisk-12.7.2-r1.ebuild, -asterisk-12.8.0.ebuild, + -asterisk-12.8.0-r1.ebuild, +asterisk-12.8.1.ebuild, -asterisk-13.1.0.ebuild, + +asterisk-13.1.1.ebuild: + Upgrades on the 12 & 13 branches for security bug #539806 (CVE-2015-1558). + Removed vulnerable ebuilds.