-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Wed, 19 Mar 2008 00:58:25 +0200
Source: asterisk
Binary: asterisk-h323 asterisk-web-vmail asterisk asterisk-classic asterisk-dev asterisk-doc asterisk-sounds-main asterisk-bristuff asterisk-config
Architecture: ia64
Version: 1:1.2.13~dfsg-2etch3
Distribution: stable-security
Urgency: high
Maintainer: Debian/IA64 Build Daemon <buildd@caballero.debian.org>
Changed-By: Faidon Liambotis <paravoid@debian.org>
Description: 
 asterisk-bristuff - Open Source Private Branch Exchange (PBX) - BRIstuff-enabled vers
 asterisk-classic - Open Source Private Branch Exchange (PBX) - original Digium versi
 asterisk-h323 - asterisk H.323 VoIP channel
Changes: 
 asterisk (1:1.2.13~dfsg-2etch3) stable-security; urgency=high
 .
   * Fix an authentication bypass vulnerability that could be exploited when
     using passwordless host-based authentication with realtime on SIP and IAX
     channels (AST-2007-027, CVE-2007-6430).
   * Fix a critical vulnerability that could be exploited to bypass SIP
     authentication (AST-2008-003, CVE-2008-1332).
   * Fix a potential DoS vulnerability in the Manager interface
     (AST-2008-004, CVE-2008-1333).
Files: 
 98635c3fb790ff46ea1c264cd8bec307 2349560 comm optional asterisk-classic_1.2.13~dfsg-2etch3_ia64.deb
 f517fd2e2bd3138fa3d8fbeafb0cb32d 2395588 comm optional asterisk-bristuff_1.2.13~dfsg-2etch3_ia64.deb
 695f2f9898e033f7623cb084bfa12b6d 149818 comm optional asterisk-h323_1.2.13~dfsg-2etch3_ia64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFH4UZTXm3vHE4uyloRAn1nAKCbKuxPkd+KGRJeANVNJRdzUNf80gCfYL18
H+UZv2HE3Vvl/97MWSV8aw0=
=1VVO
-----END PGP SIGNATURE-----