Package: asterisk Version: 1:1.6.2.0~dfsg~rc1-1 Severity: grave Tags: security patch
Hi, A vulnerability has been reported in asterisk that allows a device to make calls on networks intended to be prohibited as defined by the "deny" and "permit" lines in sip.conf. The original advisory can be found at: http://downloads.asterisk.org/pub/security/AST-2009-007.html And the patch at: http://downloads.asterisk.org/pub/security/AST-2009-007-1.6.1.diff.txt If you fix the vulnerability please also make sure to include the CVE id in your changelog entry, whenever one is assigned. Cheers, -- Raphael Geissert - Debian Developer www.debian.org - get.debian.net -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
