The Asterisk and Zaptel development teams have released Asterisk 1.4.2.
In addition to minor bug fixes, this release includes:
- improved SLA support, sample configurations and documentation
- fixes for incoming DTMF handling in the IAX2 channel driver
There are also two security-related changes in this version:
- a fix for a SIP channel driver remote DoS vulnerability
(http://bugs.digium.com/view.php?id=9313)
- a fix for a SIP channel driver remote DoS vulnerability discovered by
INRIA Lorraine
(http://voipsa.org/pipermail/voipsec_voipsa.org/2007-March/002275.html)
All users of Asterisk 1.4 with the SIP channel driver loaded and
connected to an untrusted network are urged to update to this release to
avoid the possibility of experiencing these problems.
Thanks for your support of Asterisk and Zaptel!
