<html><head></head><body bgcolor="#FFFFFF"><div><br><br>Denis at mobile.</div><div><br>Begin forwarded message:<br><br></div><blockquote type="cite"><div><b>From:</b> Asterisk Development Team <<a href="mailto:asteriskteam@digium.com">asteriskteam@digium.com</a>><br><b>Date:</b> 19 de janeiro de 2012 18:00:00 BRST<br><b>To:</b> <a href="mailto:asterisk-dev@lists.digium.com">asterisk-dev@lists.digium.com</a><br><b>Subject:</b> <b>[asterisk-dev] Asterisk 1.8.8.2 and 10.0.1 Now Available (Security Release)</b><br><b>Reply-To:</b> Asterisk Developers Mailing List <<a href="mailto:asterisk-dev@lists.digium.com">asterisk-dev@lists.digium.com</a>><br><br></div></blockquote><div></div><blockquote type="cite"><div><span>The Asterisk Development Team has announced security releases for Asterisk 1.8</span><br><span>and 10. The available security releases are released as versions 1.8.8.2 and</span><br><span>10.0.1. Please note that the security vulnerability in Asterisk 1.8 and 10</span><br><span>does not exist for Asterisk versions 1.4 or 1.6.2.</span><br><span></span><br><span>These releases are available for immediate download at</span><br><span><a href="http://downloads.asterisk.org/pub/telephony/asterisk/releases">http://downloads.asterisk.org/pub/telephony/asterisk/releases</a></span><br><span></span><br><span>The release of Asterisk versions 1.8.8.2 and 10.0.1 resolves an issue</span><br><span>wherein an attacker attempting to negotiate a secure video stream can crash</span><br><span>Asterisk if video support has not been enabled and the res_srtp Asterisk</span><br><span>module is loaded.</span><br><span></span><br><span>The issue and its resolution is described in the security advisory.</span><br><span></span><br><span>For more information about the details of these vulnerabilities, please read the</span><br><span>security advisory AST-2012-001, which were released at the same time as this </span><br><span>announcement.</span><br><span></span><br><span>For a full list of changes in the current releases, please see the ChangeLogs:</span><br><span></span><br><span><a href="http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.8.2">http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.8.2</a></span><br><span><a href="http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.0.1">http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.0.1</a></span><br><span></span><br><span>Security advisory AST-2012-001 is available at:</span><br><span></span><br><span> * <a href="http://downloads.asterisk.org/pub/security/AST-2012-001.pdf">http://downloads.asterisk.org/pub/security/AST-2012-001.pdf</a></span><br><span></span><br><span>Thank you for your continued support of Asterisk!</span><br><span></span><br><span>--</span><br><span>_____________________________________________________________________</span><br><span>-- Bandwidth and Colocation Provided by <a href="http://www.api-digital.com">http://www.api-digital.com</a> --</span><br><span></span><br><span>asterisk-dev mailing list</span><br><span>To UNSUBSCRIBE or update options visit:</span><br><span> <a href="http://lists.digium.com/mailman/listinfo/asterisk-dev">http://lists.digium.com/mailman/listinfo/asterisk-dev</a></span><br></div></blockquote></body></html>