I thank you Peio
The vulnerabilities are next:
CVE-2021-43611,
CVE-2021-43610 y
CVE-2021-33056
I see that these are already remedied with the new version.
But when installing it asks for an authorization because the software is unknown or not signed.
That did not happen with previous versions. I send you an image to explain better.
And Windows send it this message:
Risk of install aplication because the Source is Unknow.
I thank you your help!!
De: Peio Rigaux [mailto:peio.rigaux@belledonne-communications.com]
Enviado el: miércoles, 16 de febrero de 2022 07:27 a. m.
Para: linphone-users@nongnu.org; Rafael Flores <Rafael.Flores@ituran.com.mx>
Asunto: Re: [Linphone-users] About version...
Hello.
Yes, normally for a release, we tag each associated submodule to the same release number, to simplify the process (for Core 5.0.49 you have liblinphone 5.0.49 and belle-sip 5.0.49, etc.).
Please tell me more about the vulnerability you are talking about, I need more context to know what you are talking about.
As far as I know, the only vulnerabilities reported to us were about potential crashs of the app when the incoming SIP request was malformed. These were fixed since then in release/5.0.
Regards,
Peio Rigaux
Junior DevOps Engineer
Belledonne Communications, the company behind Linphone
Linphone.org
Le 14/02/2022 à 19:54, Rafael Flores a écrit :
Hi Linphone Team and alls.
My name es Rafael and I install linphone on my office laptop. The IT department tells me that Linphone are vulnerabilities in Bellesip DLL
I understand that the Core version of LInphone is the same as Bellsip... It is correct?
If its correct With this new version I would no longer have the vulnerability problem that TI tells me.
I thank you for your attention
_______________________________________________Linphone-users mailing listLinphone-users@nongnu.orghttps://lists.nongnu.org/mailman/listinfo/linphone-users
