[afnog] Fwd: [Asterisk-Announce] Asterisk 1.2.9 and 1.0.11 Released -- Security Fix

Sunday Adekunle Folayan sfolayan at skannet.com.ng
Tue Jun 6 09:03:14 EAT 2006


>From: The Asterisk Development Team <asteriskteam at digium.com>
>To: asterisk-announce at lists.digium.com
>Subject: [Asterisk-Announce] Asterisk 1.2.9 and 1.0.11 Released -- Security
>
>The Asterisk Development Team today released Asterisk 1.2.9 and Asterisk
>1.0.11 to address a security vulnerability in the IAX2 channel driver
>(chan_iax2). The vulnerability affects all users with IAX2 clients that
>might be compromised or used by a malicious user, and can lead to denial
>of service attacks and random Asterisk server crashes via a relatively
>trivial exploit.
>
>All users are urged to upgrade as soon as they can practically do so, or
>ensure that they don't expose IAX2 services to the public if it is not
>necessary.
>
>The release files are available in the usual place (ftp.digium.com), as
>both tarballs and patch files relative to the last release. In addition,
>both the tarballs and the patch files have been signed using GPG keys of
>the release maintainers, so that you can ensure their authenticity.
>
>Thank you for your support of Asterisk!
>_______________________________________________
>--Bandwidth and Colocation provided by Easynews.com --
>
>Asterisk-Announce mailing list
>To UNSUBSCRIBE or update options visit:
>    http://lists.digium.com/mailman/listinfo/asterisk-announce
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://listserv2.cfi.co.ug/pipermail/afnog/attachments/20060606/af920acc/attachment.html


More information about the afnog mailing list