Processing control commands:
> fixed -1 1:13.18.5~dfsg-1
Bug #884345 [src:asterisk] asterisk: CVE-2017-17664: Remote Crash Vulnerability
in RTCP Stack
Marked as fixed in versions asterisk/1:13.18.5~dfsg-1.
--
884345: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884345
Debian Bug Tracking S
Control: fixed -1 1:13.18.5~dfsg-1
This was fixed in sid with the latest upload, but not properly closed in
the changelog.
asterisk (1:13.18.5~dfsg-1) unstable; urgency=medium
* New upstream release:
- CVE-2017-17850 / AST-2017-014 (closes: #885072)
- AST-2017-012: Remote Crash Vulnera
Processing control commands:
> found -1 1:13.14.1~dfsg-2+deb9u2
Bug #884345 [src:asterisk] asterisk: CVE-2017-17664: Remote Crash Vulnerability
in RTCP Stack
Marked as found in versions asterisk/1:13.14.1~dfsg-2+deb9u2.
--
884345: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884345
Debian
control: found -1 1:13.14.1~dfsg-2+deb9u2
Thanks.
This applies only to Asterisk >= 13. It does apply to the version in
Stable, though not to the version in oldstable.
--
Tzafrir Cohen | tzaf...@jabber.org | VIM is
http://tzafrir.org.il || a Mutt's
tzaf...@cohens.org.
Source: asterisk
Version: 1:13.18.1~dfsg-1
Severity: grave
Tags: patch security upstream
Hi,
the following vulnerability was published for asterisk.
CVE-2017-17664[0]:
| A Remote Crash issue was discovered in Asterisk Open Source 13.x before
| 13.18.4, 14.x before 14.7.4, and 15.x before 15.1.4
5 matches
Mail list logo
