Bug#610487: asterisk: AST-2011-001: buffer overflow in caller ID URI encoding

On 02/11/11 00:01, Moritz Mühlenhoff wrote: Should I upload to security-master? Excellent, thanks for taking care. Please upload (remember that stable-security needs to be build with -sa, since it's new in Squeeze) Done for both oldstable-security and stable-security (and thanks for the warn

Bug#610487: asterisk: AST-2011-001: buffer overflow in caller ID URI encoding

On Thu, Feb 10, 2011 at 08:02:48PM +0200, Faidon Liambotis wrote: > Faidon Liambotis wrote: > >I can do the uploads (lenny hasn't been uploaded either, right?) but I'm > >afraid it'll be with minimal testing. Moritz, is that acceptable? > >Certainly better than having a remote exploitable hole... >

Bug#610487: asterisk: AST-2011-001: buffer overflow in caller ID URI encoding

Faidon Liambotis wrote: I can do the uploads (lenny hasn't been uploaded either, right?) but I'm afraid it'll be with minimal testing. Moritz, is that acceptable? Certainly better than having a remote exploitable hole... I'm pondering whether I should remove my name from maintainer as well. Tzaf

Bug#610487: asterisk: AST-2011-001: buffer overflow in caller ID URI encoding

Tzafrir, ping? I can do the uploads (lenny hasn't been uploaded either, right?) but I'm afraid it'll be with minimal testing. Moritz, is that acceptable? Certainly better than having a remote exploitable hole... I'm pondering whether I should remove my name from maintainer as well. Tzafrir,

Bug#610487: asterisk: AST-2011-001: buffer overflow in caller ID URI encoding

On Tue, Jan 25, 2011 at 09:28:40PM +0100, Moritz Mühlenhoff wrote: > On Tue, Jan 18, 2011 at 11:36:01PM +, Tzafrir Cohen wrote: > > Package: asterisk > > Version: 1:1.6.2.9-2 > > Justification: user security hole > > Severity: grave > > Tags: security patch upstream > > > > *** Please type you

Bug#610487: asterisk: AST-2011-001: buffer overflow in caller ID URI encoding

On Tue, Jan 18, 2011 at 11:36:01PM +, Tzafrir Cohen wrote: > Package: asterisk > Version: 1:1.6.2.9-2 > Justification: user security hole > Severity: grave > Tags: security patch upstream > > *** Please type your report below this line *** > The Asterisk project has reported security advisory

Bug#610487: asterisk: AST-2011-001: buffer overflow in caller ID URI encoding

user release.debian@packages.debian.org tag 610487 + squeeze-ignore usertag 610487 + squeeze-can-defer thanks On Tue, January 18, 2011 23:36, Tzafrir Cohen wrote: > The Asterisk project has reported security advisory ASA-2011-011 > http://downloads.asterisk.org/pub/security/AST-2011-001.html >

Bug#610487: asterisk: AST-2011-001: buffer overflow in caller ID URI encoding

Package: asterisk Version: 1:1.6.2.9-2 Justification: user security hole Severity: grave Tags: security patch upstream *** Please type your report below this line *** The Asterisk project has reported security advisory ASA-2011-011 http://downloads.asterisk.org/pub/security/AST-2011-001.html (No C