For the record (regarding the SIP nat issue alone):
Asterisk 1.6.22 was just released:
The release of Asterisk 1.6.2.22 corrects two flaws in sip.conf.sample
related to AST-2011-013:
* The sample file listed *two* values for the 'nat' option as being
the default. Only 'yes' is the default.
*
On Sun, Dec 18, 2011 at 12:58:03PM +0200, Tzafrir Cohen wrote:
> On Sun, Dec 11, 2011 at 05:09:21PM +0200, Tzafrir Cohen wrote:
> > On Fri, Dec 09, 2011 at 09:47:04PM +0100, Moritz Muehlenhoff wrote:
> > > Source: asterisk
> > > Severity: grave
> > > Tags: security
> > >
> > > Please see http://do
On Sun, Dec 11, 2011 at 05:09:21PM +0200, Tzafrir Cohen wrote:
> On Fri, Dec 09, 2011 at 09:47:04PM +0100, Moritz Muehlenhoff wrote:
> > Source: asterisk
> > Severity: grave
> > Tags: security
> >
> > Please see http://downloads.asterisk.org/pub/security/AST-2011-014.html
> > This has been assigne
On Fri, Dec 09, 2011 at 09:47:04PM +0100, Moritz Muehlenhoff wrote:
> Source: asterisk
> Severity: grave
> Tags: security
>
> Please see http://downloads.asterisk.org/pub/security/AST-2011-014.html
> This has been assigned CVE-2011-4598.
What about the pending fixes for #630381 and #639821 ?
>
Source: asterisk
Severity: grave
Tags: security
Please see http://downloads.asterisk.org/pub/security/AST-2011-014.html
This has been assigned CVE-2011-4598.
There's also http://downloads.asterisk.org/pub/security/AST-2011-013.html,
(CVE-2011-4597), which seems rather esoteric and can likely be i
5 matches
Mail list logo
