Re: asterisk fixing CVE-2011-2536 for testing

To: Kilian Krause <kilian@debian.org>
Cc: debian-release@lists.debian.org, pkg-voip-maintainers@lists.alioth.debian.org
Subject: Re: asterisk fixing CVE-2011-2536 for testing
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Tue, 12 Jul 2011 18:41:19 +0100
Message-id: <[🔎] 1310492480.24036.2.camel@hathi.jungle.funky-badger.org>
In-reply-to: <[🔎] 1309876646.10293.14.camel@rusty.rus.uni-stuttgart.de>
References: <[🔎] 1309876646.10293.14.camel@rusty.rus.uni-stuttgart.de>

Hi,

On Tue, 2011-07-05 at 16:37 +0200, Kilian Krause wrote:
> in order to allow asterisk to fix AST-2011-011 (CVE-2011-2536 - "Don't
> leak SIP username information", #632029) also in testing we are now
> still at 10 days due to the dependency on spandsp.
> 
> This bug was fixed in unstable, stable and oldstable are already
> discussed with Debian Security.
> 
> We'd like to request an urgency bump on spandsp to speed up the
> transition.

Apologies for the delay in processing this.  I've added a hint for
tonight's britney run.

Regards,

Adam

Reply to:

References:
- asterisk fixing CVE-2011-2536 for testing
  - From: Kilian Krause <kilian@debian.org>

Prev by Date: NEW changes in proposedupdates
Next by Date: Bug#633460: pu: package freebsd-utils/8.1-4+squeeze1
Previous by thread: asterisk fixing CVE-2011-2536 for testing
Next by thread: Bug#632766: nmu: ocaml-lastfm_0.3.0-1
Index(es):
- Date
- Thread