The Asterisk Development Team has announced the release of Asterisk 1.2.35, 1.4.26.2, 1.6.0.15, and 1.6.1.6. These releases are available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/ These releases have been created in response to an IAX2 denial of service vulnerability. For more information about the details of this vulnerability, please read the security advisory AST-2009-006, which was released at the same time as this announcement. The announcement is available at http://downloads.asterisk.org/pub/security/AST-2009-006.pdf Also, please see the PDF in doc/IAX2-security.pdf in your Asterisk source. For a full list of changes in the current releases, please see the ChangeLogs: http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.2.35 http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.4.26.2 http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.6.0.15 http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.6.1.6 Thank you for your continued support of Asterisk!
|