-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Wed, 19 Mar 2008 00:58:25 +0200
Source: asterisk
Binary: asterisk-h323 asterisk-web-vmail asterisk asterisk-classic asterisk-dev asterisk-doc asterisk-sounds-main asterisk-bristuff asterisk-config
Architecture: amd64
Version: 1:1.2.13~dfsg-2etch3
Distribution: stable-security
Urgency: high
Maintainer: Debian amd64 Build Daemon <buildd_i386-excelsior>
Changed-By: Faidon Liambotis <paravoid@debian.org>
Description: 
 asterisk-bristuff - Open Source Private Branch Exchange (PBX) - BRIstuff-enabled vers
 asterisk-classic - Open Source Private Branch Exchange (PBX) - original Digium versi
 asterisk-h323 - asterisk H.323 VoIP channel
Changes: 
 asterisk (1:1.2.13~dfsg-2etch3) stable-security; urgency=high
 .
   * Fix an authentication bypass vulnerability that could be exploited when
     using passwordless host-based authentication with realtime on SIP and IAX
     channels (AST-2007-027, CVE-2007-6430).
   * Fix a critical vulnerability that could be exploited to bypass SIP
     authentication (AST-2008-003, CVE-2008-1332).
   * Fix a potential DoS vulnerability in the Manager interface
     (AST-2008-004, CVE-2008-1333).
Files: 
 bd5f2ee7c79247ee6f5944076b9f3442 1745634 comm optional asterisk-classic_1.2.13~dfsg-2etch3_amd64.deb
 b2c4b1c62ebc4dc13a1ea53a5c842e96 1780328 comm optional asterisk-bristuff_1.2.13~dfsg-2etch3_amd64.deb
 1f58ef3241222af34a9ca717eff2c052 133354 comm optional asterisk-h323_1.2.13~dfsg-2etch3_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFH4UZOXm3vHE4uyloRApwQAJ45FnW0JfjZxz/q1fuvIB2pOXSoTQCfdkab
H8h7m/Ooq+1k+hhSqxLhI90=
=f20K
-----END PGP SIGNATURE-----