Summary: | net-misc/asterisk >1.2.33 <1.6.1.2: Remote Crash Vulnerability in RTP stack (CVE-2009-2651) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Doron Fediuck <doron.fediuck> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | trivial | CC: | chainsaw, voip+disabled |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://downloads.digium.com/pub/security/AST-2009-004.html | ||
Whiteboard: | ~3 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Doron Fediuck
2009-08-03 10:23:04 UTC
Since masked, changed to ~3 (Trivial). Version bump is easy. The patches apply to 1.6.1.2 just fine. Just rename asterisk-1.6.1.1-resolve-peer-not-section-header.patch and the ebuild. 1.6.1.9 appeared in portage. Closing noglsa as there were never a stable 1.6.1.9. 1.6.x, of course. |