On 30/03/22 12:05 PM, Bastian Triller wrote:
> Hello,
>
> we upgraded to 2.5.5~dfsg-6+deb9u3 and we're seeing crashes in
> Asterisk. It seems the patch for CVE-2022-23608 is faulty. In your
> patch, the hash table key is assigned twice in hunk #2 but not in hunk
> #4.
> Please see attached patch C
Hello,
we upgraded to 2.5.5~dfsg-6+deb9u3 and we're seeing crashes in
Asterisk. It seems the patch for CVE-2022-23608 is faulty. In your
patch, the hash table key is assigned twice in hunk #2 but not in hunk
#4.
Please see attached patch CVE-2022-23608_fixed.patch.
Thanks for your effort.
Regard
