similar to: Asterisk 1.2.24 and 1.4.10 released

The Asterisk development team has released Asterisk versions 1.2.22 and 1.4.8. These releases contain fixes for four critical security vulnerabilities. One of these vulnerabilities is a remotely exploitable stack buffer overflow, which could allow an attacker to execute arbitrary code on the target machine. The other three are all remotely exploitable crash vulnerabilities. We have released

The Asterisk development team has released Asterisk versions 1.2.22 and 1.4.8. These releases contain fixes for four critical security vulnerabilities. One of these vulnerabilities is a remotely exploitable stack buffer overflow, which could allow an attacker to execute arbitrary code on the target machine. The other three are all remotely exploitable crash vulnerabilities. We have released

Asterisk Project Security Advisory - ASA-2007-016 +------------------------------------------------------------------------+ | Product | Asterisk | |--------------------+---------------------------------------------------| | Summary | Remote crash vulnerability in Skinny channel | | | driver

Asterisk Project Security Advisory - ASA-2007-016 +------------------------------------------------------------------------+ | Product | Asterisk | |--------------------+---------------------------------------------------| | Summary | Remote crash vulnerability in Skinny channel | | | driver

Asterisk Project Security Advisory - ASA-2007-015 +------------------------------------------------------------------------+ | Product | Asterisk | |--------------------+---------------------------------------------------| | Summary | Remote Crash Vulnerability in IAX2 channel driver |

Asterisk Project Security Advisory - ASA-2007-015 +------------------------------------------------------------------------+ | Product | Asterisk | |--------------------+---------------------------------------------------| | Summary | Remote Crash Vulnerability in IAX2 channel driver |

Asterisk Project Security Advisory - ASA-2007-014 +------------------------------------------------------------------------+ | Product | Asterisk | |----------------------+-------------------------------------------------| | Summary | Stack buffer overflow in IAX2 channel driver |

Asterisk Project Security Advisory - ASA-2007-014 +------------------------------------------------------------------------+ | Product | Asterisk | |----------------------+-------------------------------------------------| | Summary | Stack buffer overflow in IAX2 channel driver |

Asterisk Project Security Advisory - ASA-2007-017 +------------------------------------------------------------------------+ | Product | Asterisk | |--------------------+---------------------------------------------------| | Summary | Remote Crash Vulnerability in STUN implementation |

Asterisk Project Security Advisory - ASA-2007-017 +------------------------------------------------------------------------+ | Product | Asterisk | |--------------------+---------------------------------------------------| | Summary | Remote Crash Vulnerability in STUN implementation |

> Asterisk Project Security Advisory - ASA-2007-013 > > +----------------------------------------------------------------------------------+ > | Product | Asterisk | > |----------------------+-----------------------------------------------------------| > | Summary | IAX2

> Asterisk Project Security Advisory - ASA-2007-013 > > +----------------------------------------------------------------------------------+ > | Product | Asterisk | > |----------------------+-----------------------------------------------------------| > | Summary | IAX2

I'm trying to somewhat reduce the security risk of Asterisk, by loading less modules. In my installation I use SIP and IAX2 for incoming calls, and that's it. No voicemail, no call parking, it just plays back voice clips. I can remove /etc/asterisk/modules.conf modules one by one: ------------------------------------ [modules] autoload=yes noload => pbx_gtkconsole.so noload =>

I've been running an asterisk server for several months on my RedHat 9 box. Today I decided to update some of the glibc packages on my box and upgrade it to the latest asterisk cvs as well. I can start the asterisk server without incident. I can place a call in from the outside and it takes the call fine; however as soon as I hangup, the server appears to just crash. I have no idea

Hi I?m a new user and I do test with my hardware . I have a x100p and telephone vozip. And when I run this command asterisk ?vvvvc for to test it . My computer show it ?warning? [chan_iax.so] => (Inter Asterisk eXchange) == Manager registered action IAX1peers == Parsing '/etc/asterisk/iax1.conf': Not found (No such file or directory) Apr 2 07:45:12 ERROR[16384]:

Hi, I am a newbie in asterisk, i could compile it and run it with no problem on a RedHat 9. In the same box, i got a linejack and a phonejack cards and i downloaded the CVS driver from quicknet. This 2 card were working in a openh323 (openphone and pstn) project with gnugk on a RedHat 9. I am using the default samples, and i tried /dev/phone0 and /dev/phone1, but when i run asterisk, i get this

This is third time today that my Asterisk hangs up. It seams that I have problems with h323. I'm using ooh323 from Asterisk add-ons. I have the following configuration Asterisk 1.2.1 Asterisk-addons 1.2.1 Fedora Core 4 I'm using SIP phones and h323 trunk to my VoIP provider Like I said this is third time today that he hang's up. First time, I came at work and Asterisk was down.

Dear Asterisk-Users: Question: ======== How do I get asterisk to pass DNID/RDNIS information between asterisk machines using iax2, in a Dial(IAX2...) command ? Setup: ===== I have two asterisk boxes, MASTER and SLAVE. MASTER is running 1.2.0 and SLAVE is running 1.2.1. The main box handles incoming calls on a multiple lines (both via hardware connection to our internal PBX and calls

Asterisk don't running, because show this message WARNING[6949]: chan_sip.c:8865 reload_config: Section 'authentication' lacks type WARNING[6949]: chan_iax2.c:7491 load_module: Unable to open IAX timing interface: No such file or directory WARNING[6949]: chan_skinny.c:2587 reload_config: Unable to get our IP address, Skinny disabled WARNING[6949]: chan_oss.c:239 sound_thread: Read

Dear Asterisk developers, I run the same asterisk version on the home machine and on the work. On the home machine I have Slackware 10.0 (kernel 2.4.24) while on the work machine I have Mandrake 10.1 (kernel 2.6.8.1 <http://2.6.8.1>). When I run asterisk on the work machine, these warnings and error appear (there are no warnings or error at home): [ Booting......Oct 17 18:19:04