[asterisk-users] Asterisk status in Debian

Faidon Liambotis paravoid at debian.org
Thu Oct 4 23:26:16 CDT 2007


Hello,
This is a update on the current status of Asterisk in Debian.
Apologies for the really long mail, it is targetted both to users and
maintainers :)

I'm Ccing asterisk-users as a one-time thing; users that are interested
can subscribe to our list[1] for updates to prevent noise on a
non-Debian list. Please Cc pkg-voip-maintainer on replies.

1: http://lists.alioth.debian.org/mailman/listinfo/pkg-voip-maintainers

sarge/etch status
-----------------
About a month ago, I fixed all the long-standing knownn vulnerabilities
in both sarge/oldstable (1.0.7) and etch/stable (1.2.12).
The updates are present security.debian.org a Advisory has been released
(DSA-1358[1]), thanks to Debian's Security Team.

These updates are fixing CVE-2007-1306, CVE-2007-1561, CVE-2007-2294,
CVE-2007-2297, CVE-2007-2488, CVE-2007-3762, CVE-2007-3763 and
CVE-2007-3764 (...).

1: http://www.debian.org/security/2007/dsa-1358

lenny status
------------
1:1.4.11~dfsg-4 has been recently uploaded to unstable.
The previously mentioned block by the openh323 dependency which
currently fails to build in unstable (binutils bug: #440015) has been
workaround-ed (by having less strict shlibs in openh323)



More information about the asterisk-users mailing list