You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa asterisk

Sigurnosni nedostaci programskog paketa asterisk

——————————————————————————–
Fedora Update Notification
FEDORA-2018-cf1dd2166b
2018-05-30 14:31:21.817648
——————————————————————————–

Name : asterisk
Product : Fedora 27
Version : 14.7.6
Release : 2.fc27
URL : http://www.asterisk.org/
Summary : The Open Source PBX
Description :
Asterisk is a complete PBX in software. It runs on Linux and provides
all of the features you would expect from a PBX and more. Asterisk
does voice over IP in three protocols, and can interoperate with
almost all standards-based telephony equipment using relatively
inexpensive hardware.

——————————————————————————–
Update Information:

Updates for security issues AST-2018-001 through AST-2018-002
——————————————————————————–
ChangeLog:

* Sun May 6 2018 Jared K. Smith <jsmith@fedoraproject.org> – 14.7.6-2
– Move res_pjproject to main package
* Fri Feb 23 2018 Jared Smith <jsmith@fedoraproject.org> – 14.7.6-1
– Update to upstream 14.7.6 release for security updates
– This update addresses security alerts AST-2018-001 through AST-2018-006
* Sat Jan 6 2018 Brian J. Murrell <brian@interlinx.bc.ca> – 14.7.5-2
– don’t apply mysql->mariadb patch on epel
* Wed Dec 27 2017 Jared Smith <jsmith@fedoraproject.org> – 14.7.5-1
– Update to upstream 14.7.5 release for AST-2017-014/CVE-2017-17850 security
issue
* Wed Dec 13 2017 Jared Smith <jsmith@fedoraproject.org> – 14.7.4-1
– Update to upstream 14.7.4 release to address AST-2017-012 security issue
* Tue Dec 5 2017 Jared Smith <jsmith@fedoraproject.org> – 14.7.3-1
– Update to upstream 14.7.3 release for security alert AST-2017-013
* Sat Nov 25 2017 Jared Smith <jsmith@fedoraproject.org> – 14.7.2-1
– Update to upstream 14.7.2 release
* Thu Sep 21 2017 Jared Smith <jsmith@fedoraproject.org> – 14.6.2-1
– Update to upstream 14.6.2 release
* Wed Sep 13 2017 Jared Smith <jsmith@fedoraproject.org> – 14.6.1-6
– Re-enable corosync, see RHBZ#1478089
* Sun Sep 3 2017 Jared Smith <jsmith@fedoraproject.org> – 14.6.1-5
– Add dependency on unbound-devel for res_resolver_unbound
* Fri Sep 1 2017 Jared Smith <jsmith@fedoraproject.org> – 14.6.1-4
– Disable corosync modules until corosync works in ppc64le again
* Fri Sep 1 2017 Jared Smith <jsmith@fedoraproject.org> – 14.6.1-3
– Fix MySQL header path (due to change in mariadb-devel patckage)
* Fri Sep 1 2017 Jared Smith <jsmith@fedoraproject.org> – 14.6.1-1
– Update to upstream 14.6.1 release
– Solves AST-2017-005, AST-2017-006, and AST-2017-007 security issues
* Fri Sep 1 2017 Jared Smith <jsmith@fedoraproject.org> – 14.6.0-2
– Add perl to BuildRequires
* Thu Aug 31 2017 Jared Smith <jsmith@fedoraproject.org> – 14.6.0-1
– Update to upstream 14.6.0 release
– Re-enable radius sub-packages
——————————————————————————–
References:

[ 1 ] Bug #1511387 – CVE-2017-16671 CVE-2017-16672 asterisk: Multiple vulnerabilities [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1511387
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2018-cf1dd2166b’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X2SXJNS3FSESIRJ73QMI3ZYHEME2UWR5/

Top
More in Preporuke
Sigurnosni nedostaci programskog paketa wireshark

Otkriveni su sigurnosni nedostaci u programskom paketu wireshark za operacijski sustav Fedora. Otkriveni nedostaci potencijalnim napadačima omogućuju rušenje servisa. Savjetuje...

Close