--------------------------------------------------------------------------------Fedora Update Notification
FEDORA-2018-cf1dd2166b
2018-05-30 14:31:21.817648
--------------------------------------------------------------------------------Name        : asterisk
Product     : Fedora 27
Version     : 14.7.6
Release     : 2.fc27
URL         : https://www.asterisk.org/
Summary     : The Open Source PBX
Description :
Asterisk is a complete PBX in software. It runs on Linux and provides
all of the features you would expect from a PBX and more. Asterisk
does voice over IP in three protocols, and can interoperate with
almost all standards-based telephony equipment using relatively
inexpensive hardware.

--------------------------------------------------------------------------------Update Information:

Updates for security issues AST-2018-001 through AST-2018-002
--------------------------------------------------------------------------------ChangeLog:

* Sun May  6 2018 Jared K. Smith  - 14.7.6-2
- Move res_pjproject to main package
* Fri Feb 23 2018 Jared Smith  - 14.7.6-1
- Update to upstream 14.7.6 release for security updates
- This update addresses security alerts AST-2018-001 through AST-2018-006
* Sat Jan  6 2018 Brian J. Murrell  - 14.7.5-2
- don't apply mysql->mariadb patch on epel
* Wed Dec 27 2017 Jared Smith  - 14.7.5-1
- Update to upstream 14.7.5 release for AST-2017-014/CVE-2017-17850 security
  issue
* Wed Dec 13 2017 Jared Smith  - 14.7.4-1
- Update to upstream 14.7.4 release to address AST-2017-012 security issue
* Tue Dec  5 2017 Jared Smith  - 14.7.3-1
- Update to upstream 14.7.3 release for security alert AST-2017-013
* Sat Nov 25 2017 Jared Smith  - 14.7.2-1
- Update to upstream 14.7.2 release
* Thu Sep 21 2017 Jared Smith  - 14.6.2-1
- Update to upstream 14.6.2 release
* Wed Sep 13 2017 Jared Smith  - 14.6.1-6
- Re-enable corosync, see RHBZ#1478089
* Sun Sep  3 2017 Jared Smith  - 14.6.1-5
- Add dependency on unbound-devel for res_resolver_unbound
* Fri Sep  1 2017 Jared Smith  - 14.6.1-4
- Disable corosync modules until corosync works in ppc64le again
* Fri Sep  1 2017 Jared Smith  - 14.6.1-3
- Fix MySQL header path (due to change in mariadb-devel patckage)
* Fri Sep  1 2017 Jared Smith  - 14.6.1-1
- Update to upstream 14.6.1 release
- Solves AST-2017-005, AST-2017-006, and AST-2017-007 security issues
* Fri Sep  1 2017 Jared Smith  - 14.6.0-2
- Add perl to BuildRequires
* Thu Aug 31 2017 Jared Smith  - 14.6.0-1
- Update to upstream 14.6.0 release
- Re-enable radius sub-packages
--------------------------------------------------------------------------------References:

  [ 1 ] Bug #1511387 - CVE-2017-16671 CVE-2017-16672 asterisk: Multiple vulnerabilities [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=1511387
--------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2018-cf1dd2166b' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X2SXJNS3FSESIRJ73QMI3ZYHEME2UWR5/

Fedora 27: asterisk Security Update 2018-cf1dd2166b 2018-cf1dd2166b

May 30, 2018
Updates for security issues AST-2018-001 through AST-2018-002

Summary

Asterisk is a complete PBX in software. It runs on Linux and provides

all of the features you would expect from a PBX and more. Asterisk

does voice over IP in three protocols, and can interoperate with

almost all standards-based telephony equipment using relatively

inexpensive hardware.

Updates for security issues AST-2018-001 through AST-2018-002

* Sun May 6 2018 Jared K. Smith - 14.7.6-2

- Move res_pjproject to main package

* Fri Feb 23 2018 Jared Smith - 14.7.6-1

- Update to upstream 14.7.6 release for security updates

- This update addresses security alerts AST-2018-001 through AST-2018-006

* Sat Jan 6 2018 Brian J. Murrell - 14.7.5-2

- don't apply mysql->mariadb patch on epel

* Wed Dec 27 2017 Jared Smith - 14.7.5-1

- Update to upstream 14.7.5 release for AST-2017-014/CVE-2017-17850 security

issue

* Wed Dec 13 2017 Jared Smith - 14.7.4-1

- Update to upstream 14.7.4 release to address AST-2017-012 security issue

* Tue Dec 5 2017 Jared Smith - 14.7.3-1

- Update to upstream 14.7.3 release for security alert AST-2017-013

* Sat Nov 25 2017 Jared Smith - 14.7.2-1

- Update to upstream 14.7.2 release

* Thu Sep 21 2017 Jared Smith - 14.6.2-1

- Update to upstream 14.6.2 release

* Wed Sep 13 2017 Jared Smith - 14.6.1-6

- Re-enable corosync, see RHBZ#1478089

* Sun Sep 3 2017 Jared Smith - 14.6.1-5

- Add dependency on unbound-devel for res_resolver_unbound

* Fri Sep 1 2017 Jared Smith - 14.6.1-4

- Disable corosync modules until corosync works in ppc64le again

* Fri Sep 1 2017 Jared Smith - 14.6.1-3

- Fix MySQL header path (due to change in mariadb-devel patckage)

* Fri Sep 1 2017 Jared Smith - 14.6.1-1

- Update to upstream 14.6.1 release

- Solves AST-2017-005, AST-2017-006, and AST-2017-007 security issues

* Fri Sep 1 2017 Jared Smith - 14.6.0-2

- Add perl to BuildRequires

* Thu Aug 31 2017 Jared Smith - 14.6.0-1

- Update to upstream 14.6.0 release

- Re-enable radius sub-packages

[ 1 ] Bug #1511387 - CVE-2017-16671 CVE-2017-16672 asterisk: Multiple vulnerabilities [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1511387

su -c 'dnf upgrade --advisory FEDORA-2018-cf1dd2166b' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X2SXJNS3FSESIRJ73QMI3ZYHEME2UWR5/

FEDORA-2018-cf1dd2166b 2018-05-30 14:31:21.817648 Product : Fedora 27 Version : 14.7.6 Release : 2.fc27 URL : https://www.asterisk.org/ Summary : The Open Source PBX Description : Asterisk is a complete PBX in software. It runs on Linux and provides all of the features you would expect from a PBX and more. Asterisk does voice over IP in three protocols, and can interoperate with almost all standards-based telephony equipment using relatively inexpensive hardware. Updates for security issues AST-2018-001 through AST-2018-002 * Sun May 6 2018 Jared K. Smith - 14.7.6-2 - Move res_pjproject to main package * Fri Feb 23 2018 Jared Smith - 14.7.6-1 - Update to upstream 14.7.6 release for security updates - This update addresses security alerts AST-2018-001 through AST-2018-006 * Sat Jan 6 2018 Brian J. Murrell - 14.7.5-2 - don't apply mysql->mariadb patch on epel * Wed Dec 27 2017 Jared Smith - 14.7.5-1 - Update to upstream 14.7.5 release for AST-2017-014/CVE-2017-17850 security issue * Wed Dec 13 2017 Jared Smith - 14.7.4-1 - Update to upstream 14.7.4 release to address AST-2017-012 security issue * Tue Dec 5 2017 Jared Smith - 14.7.3-1 - Update to upstream 14.7.3 release for security alert AST-2017-013 * Sat Nov 25 2017 Jared Smith - 14.7.2-1 - Update to upstream 14.7.2 release * Thu Sep 21 2017 Jared Smith - 14.6.2-1 - Update to upstream 14.6.2 release * Wed Sep 13 2017 Jared Smith - 14.6.1-6 - Re-enable corosync, see RHBZ#1478089 * Sun Sep 3 2017 Jared Smith - 14.6.1-5 - Add dependency on unbound-devel for res_resolver_unbound * Fri Sep 1 2017 Jared Smith - 14.6.1-4 - Disable corosync modules until corosync works in ppc64le again * Fri Sep 1 2017 Jared Smith - 14.6.1-3 - Fix MySQL header path (due to change in mariadb-devel patckage) * Fri Sep 1 2017 Jared Smith - 14.6.1-1 - Update to upstream 14.6.1 release - Solves AST-2017-005, AST-2017-006, and AST-2017-007 security issues * Fri Sep 1 2017 Jared Smith - 14.6.0-2 - Add perl to BuildRequires * Thu Aug 31 2017 Jared Smith - 14.6.0-1 - Update to upstream 14.6.0 release - Re-enable radius sub-packages [ 1 ] Bug #1511387 - CVE-2017-16671 CVE-2017-16672 asterisk: Multiple vulnerabilities [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1511387 su -c 'dnf upgrade --advisory FEDORA-2018-cf1dd2166b' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X2SXJNS3FSESIRJ73QMI3ZYHEME2UWR5/

Change Log

References

Update Instructions

Severity
Product : Fedora 27
Version : 14.7.6
Release : 2.fc27
URL : https://www.asterisk.org/
Summary : The Open Source PBX

Related News

23.Tablet Connections Esm H320
2 - 3 min read
The release of Ubuntu 24.04 LTS , also known as Noble Numbat, brings various security enhancements and exciting new features . These improvements
4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved