Accepted resiprocate 1:1.9.7-5+deb8u1 (source amd64) into oldstable
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 23 Jul 2018 19:03:02 +0200
Source: resiprocate
Binary: libresiprocate-1.9 libresiprocate-1.9-dev librecon-1.9 librecon-1.9-dev libresiprocate-turn-client-1.9 libresiprocate-turn-client-1.9-dev repro resiprocate-turn-server sipdialer
Architecture: source amd64
Version: 1:1.9.7-5+deb8u1
Distribution: jessie-security
Urgency: high
Maintainer: Debian VoIP Team <pkg-voip-maintainers@lists.alioth.debian.org>
Changed-By: Thorsten Alteholz <debian@alteholz.de>
Description:
librecon-1.9 - reSIProcate conversation manager - shared libraries
librecon-1.9-dev - reSIProcate conversation manager - development files
libresiprocate-1.9 - reSIProcate SIP stack - shared libraries
libresiprocate-1.9-dev - reSIProcate SIP stack - development files
libresiprocate-turn-client-1.9 - reSIProcate TURN client (reTurn) - shared libraries
libresiprocate-turn-client-1.9-dev - reSIProcate TURN client (reTurn) - development files
repro - reSIProcate SIP stack - lightweight SIP proxy daemon
resiprocate-turn-server - reSIProcate SIP stack - ICE/TURN server
sipdialer - reSIProcate SIP stack - click-to-call utility
Changes:
resiprocate (1:1.9.7-5+deb8u1) jessie-security; urgency=high
.
* Non-maintainer upload by the LTS Team.
* CVE-2018-12584
A flaw in function ConnectionBase::preparseNewBytes of
resip/stack/ConnectionBase.cxx has been detected, that
allows remote attackers to cause a denial of service
(buffer overflow) or possibly execute arbitrary code
when TLS communication is enabled.
* CVE-2017-11521
A flaw in function SdpContents::Session::Medium::parse of
resip/stack/SdpContents.cxx has been detected, that allows
remote attackers to cause a denial of service (memory
consumption) by triggering many media connections.
Checksums-Sha1:
e9490046fb4a76f37709d5e358ca2545d6f406d9 3047 resiprocate_1.9.7-5+deb8u1.dsc
996903c3b9022aa859ee459f1b0a68e9d2357f08 10112836 resiprocate_1.9.7.orig.tar.gz
74ac48ea483e8d07be140fe28b43e1295bd9be13 30620 resiprocate_1.9.7-5+deb8u1.debian.tar.xz
7bc271b016b96ddd7163dd7e87883dbe7fc2f0a7 1214688 libresiprocate-1.9_1.9.7-5+deb8u1_amd64.deb
bbf1c7018f428253b2518e793caed17782952fe6 273600 libresiprocate-1.9-dev_1.9.7-5+deb8u1_amd64.deb
a2e1079cc10e2a010c0a1fd19e7b31136264f74b 304198 librecon-1.9_1.9.7-5+deb8u1_amd64.deb
d3993324e7c4fe75d4fa7ebb886e48148df3083c 59462 librecon-1.9-dev_1.9.7-5+deb8u1_amd64.deb
26320534e0bca574a4de66a0bf63c553b9c70575 209610 libresiprocate-turn-client-1.9_1.9.7-5+deb8u1_amd64.deb
64d85d4fbd8077328a882ab7fc077d20ee34e7e0 34594 libresiprocate-turn-client-1.9-dev_1.9.7-5+deb8u1_amd64.deb
aac4a62b94d6835faca221e7f37fd66186d0e305 479228 repro_1.9.7-5+deb8u1_amd64.deb
519aea636ea883aff30a9683c9921b71a5632c05 207284 resiprocate-turn-server_1.9.7-5+deb8u1_amd64.deb
39e0ebe7d4444d67bfe0887d656e979a4622a932 25602 sipdialer_1.9.7-5+deb8u1_amd64.deb
Checksums-Sha256:
4952c790f84cbe10d3b2a5d4588c776d0b9ffca1f9b7cea45b14cf5e670aeaef 3047 resiprocate_1.9.7-5+deb8u1.dsc
980b89eaa1c745951353b7dcc630c4e47bed89c8fffc9ad8de0028d8e8a826d1 10112836 resiprocate_1.9.7.orig.tar.gz
5769c41a61287dd0bc87c04acc08110101b1d2441649e8676b7dcce0b7d2bc76 30620 resiprocate_1.9.7-5+deb8u1.debian.tar.xz
e4b07740c903cb2b1725134584fac7305bcd8f2c83e5ace74281c2a6861ba2fe 1214688 libresiprocate-1.9_1.9.7-5+deb8u1_amd64.deb
0e518b0027b23c74b2209952d8d9bff6623e5a580ab648c98f9a2a4fe74eae82 273600 libresiprocate-1.9-dev_1.9.7-5+deb8u1_amd64.deb
1f42c3e6a7dc0ef5b1c3725c2465cf6ea2412722555b81fdf7dd3ba280cdd59e 304198 librecon-1.9_1.9.7-5+deb8u1_amd64.deb
0f2a679e1197b23f688c02fb12e78169aa140c47170ac5cb50430c4a7347c1a1 59462 librecon-1.9-dev_1.9.7-5+deb8u1_amd64.deb
a16d5cfefda7ba3992ff4ab99c345f30c6c4c84153fad6b0a9b65e9bcd3627b3 209610 libresiprocate-turn-client-1.9_1.9.7-5+deb8u1_amd64.deb
2ef1310b3aa28f6c7e74df8f91ff62ccbee636d8ad455165e5f8784a47abeed5 34594 libresiprocate-turn-client-1.9-dev_1.9.7-5+deb8u1_amd64.deb
70da47919d468e84f9f429844f5b795dd5168b3bd049062ebf1ff67f10b0a1e3 479228 repro_1.9.7-5+deb8u1_amd64.deb
5d733634f8d3ef8bd9411984b3962f0392c2fd698e6eb9291f6b924bb65adb27 207284 resiprocate-turn-server_1.9.7-5+deb8u1_amd64.deb
73f586a7956bc6a2e3bb9fb073d7707cc5dd012581e2fc83a12b95644c5a5fe2 25602 sipdialer_1.9.7-5+deb8u1_amd64.deb
Files:
852dd84d874b7d0c15b658a9fa08d12f 3047 libs extra resiprocate_1.9.7-5+deb8u1.dsc
67a18e81441bc8102955269e39f4993b 10112836 libs extra resiprocate_1.9.7.orig.tar.gz
a70a65a3c1ff9d1c412c45b590ca3acf 30620 libs extra resiprocate_1.9.7-5+deb8u1.debian.tar.xz
1f9c2840c0bc94c28ef98524d84cd71c 1214688 libs extra libresiprocate-1.9_1.9.7-5+deb8u1_amd64.deb
4638d3f03c77e4fb34f8a5103d43e8d8 273600 libdevel extra libresiprocate-1.9-dev_1.9.7-5+deb8u1_amd64.deb
e2681f6f53bffe573270911dfde57d0b 304198 libs extra librecon-1.9_1.9.7-5+deb8u1_amd64.deb
05f3816bcc3778186df00176de53fe0e 59462 libdevel extra librecon-1.9-dev_1.9.7-5+deb8u1_amd64.deb
40d4f67d79ac0a35752eb954a90bcfe1 209610 libs extra libresiprocate-turn-client-1.9_1.9.7-5+deb8u1_amd64.deb
962744e18bf15d473753ee33810572da 34594 libdevel extra libresiprocate-turn-client-1.9-dev_1.9.7-5+deb8u1_amd64.deb
336965fee0c8d7cc2e4f65665f9c00ae 479228 net extra repro_1.9.7-5+deb8u1_amd64.deb
093cfb3d0dae126ce7c563e196ff0d92 207284 net extra resiprocate-turn-server_1.9.7-5+deb8u1_amd64.deb
42bc33cfee3af2ae7df8acd27cd6b565 25602 net extra sipdialer_1.9.7-5+deb8u1_amd64.deb
-----BEGIN PGP SIGNATURE-----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=eDgw
-----END PGP SIGNATURE-----