[asterisk-users] Asterisk 13.19.0 Now Available

Binarus lists at binarus.de
Fri Jan 12 13:02:29 CST 2018


Thanks for taking the time, but ...

On 12.01.2018 12:04, Joshua Colp wrote:

>> Could this be one of the rare cases where 13 and 15 needed security
>> fixes, but 14 didn't?
> 
> These are normal bug fix releases, not security releases. As such 14 did not receive a release.
> 

Interesting. The announcements for 13.19.0 and 15.2.0 you have made here
both list all issues which have been fixed in the section "Bugs fixed in
this release". However,

ASTERISK-27480
ASTERISK-27452
ASTERISK-27337
ASTERISK-27319

seem to be security related (according to the short explanation texts in
the announcements) and have been fixed both in 15.2.0 and 13.19.0.

I am wondering why 14 does not suffer from them, or -if it suffers from
them- why they are not considered security related there.

I highly respect your work and don't want to steal your time since I
have probably seriously misunderstood something, but could you please
shortly explain what the string "Security: " (aka "(Security)" and with
other wordings) at the beginning of the short explanation text for an
issue exactly means?

Thank you very much,

Binarus



More information about the asterisk-users mailing list