[v2.4] Vulnerability in asterisk < 10.5.2 may allow remote denial of service
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3863
http://downloads.asterisk.org/pub/security/AST-2012-010.html
- Upgrade to 10.5.2
(from redmine: issue id 1254, created on 2012-07-19, closed on 2012-08-02)
- Changesets:
- Revision afb614ea by Timo Teräs on 2012-07-23T14:34:22Z:
main/asterisk: security upgrade to 10.5.2 (CVE-2012-3812,CVE-2012-3863)
fixes #1254
* AST-2012-10 (CVE-2012-3863) - Possible resource leak on uncompleted re-invite
* AST-2012-11 (CVE-2012-3812) - Remote crash in voice mail application
(cherry picked from commit 0279835794fd134c9ca2e7662766ffd540688e11)