diff options
| author |   Tony Vroon <chainsaw@gentoo.org> | 2011-03-23 11:21:23 +0000 |
|---|---|---|
| committer | Tony Vroon <chainsaw@gentoo.org> | 2011-03-23 11:21:23 +0000 |
| commit | 20d2da08d909b0638630180394a30723d6059ddf (patch) | |
| tree | 1b465bfc0f5f7d9977850f7303e12a7255cf7931 /net-misc | |
| parent | Fix addpredict on card*, pointed out by samuli (diff) | |
| download | gentoo-2-20d2da08d909b0638630180394a30723d6059ddf.tar.gz gentoo-2-20d2da08d909b0638630180394a30723d6059ddf.tar.bz2 gentoo-2-20d2da08d909b0638630180394a30723d6059ddf.zip | |
Secure ebuild for the 1.6.2 branch; robustness fixes for the manager interface. As per advisory AST-2011-003, a denial of service is possible through resource exhaustion in previous versions. As per advisory AST-2011-004, it is possible to cause a NULL pointer dereference by rapidly opening & closing TCP/TLS connections. Removed all but the last stable ebuild. For security bug #359767 filed by Pawel Hajdan, Jr.
(Portage version: 2.1.9.44/cvs/Linux x86_64)
Diffstat (limited to 'net-misc')
| -rw-r--r-- | net-misc/asterisk/ChangeLog | 13 | ||||
| -rw-r--r-- | net-misc/asterisk/asterisk-1.6.2.17.2.ebuild (renamed from net-misc/asterisk/asterisk-1.6.2.17.ebuild) | 2 |
2 files changed, 13 insertions, 2 deletions
diff --git a/net-misc/asterisk/ChangeLog b/net-misc/asterisk/ChangeLog index 3032a925348f..ed991c4b0c58 100644 --- a/net-misc/asterisk/ChangeLog +++ b/net-misc/asterisk/ChangeLog @@ -1,6 +1,17 @@ # ChangeLog for net-misc/asterisk # Copyright 1999-2011 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/net-misc/asterisk/ChangeLog,v 1.299 2011/03/23 11:07:47 chainsaw Exp $ +# $Header: /var/cvsroot/gentoo-x86/net-misc/asterisk/ChangeLog,v 1.300 2011/03/23 11:21:23 chainsaw Exp $ + +*asterisk-1.6.2.17.2 (23 Mar 2011) + + 23 Mar 2011; Tony Vroon <chainsaw@gentoo.org> -asterisk-1.6.2.17.ebuild, + +asterisk-1.6.2.17.2.ebuild: + Secure ebuild for the 1.6.2 branch; robustness fixes for the manager + interface. As per advisory AST-2011-003, a denial of service is possible + through resource exhaustion in previous versions. As per advisory + AST-2011-004, it is possible to cause a NULL pointer dereference by rapidly + opening & closing TCP/TLS connections. Removed all but the last stable + ebuild. For security bug #359767 filed by Pawel Hajdan, Jr. *asterisk-1.8.3.2 (23 Mar 2011) diff --git a/net-misc/asterisk/asterisk-1.6.2.17.ebuild b/net-misc/asterisk/asterisk-1.6.2.17.2.ebuild index af6fbc38a15b..8df237226ffc 100644 --- a/net-misc/asterisk/asterisk-1.6.2.17.ebuild +++ b/net-misc/asterisk/asterisk-1.6.2.17.2.ebuild @@ -1,6 +1,6 @@ # Copyright 1999-2011 Gentoo Foundation # Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/net-misc/asterisk/asterisk-1.6.2.17.ebuild,v 1.1 2011/02/28 17:42:25 chainsaw Exp $ +# $Header: /var/cvsroot/gentoo-x86/net-misc/asterisk/asterisk-1.6.2.17.2.ebuild,v 1.1 2011/03/23 11:21:23 chainsaw Exp $ EAPI=3 inherit autotools base eutils linux-info multilib |