<div dir="auto"></div><div class="gmail_quote">---------- Mensagem encaminhada ----------<br>De: "Asterisk Development Team" <<a href="mailto:asteriskteam@digium.com">asteriskteam@digium.com</a>><br>Data: 1 de dez de 2017 19:14<br>Assunto: [asterisk-dev] Asterisk 13.18.3, 14.7.3, 15.1.3 and Certified Asterisk 13.13-cert8 Now Available<br>Para: "Asterisk Developers Mailing List" <<a href="mailto:asterisk-dev@lists.digium.com">asterisk-dev@lists.digium.com</a>><br>Cc: <br><br type="attribution">The Asterisk Development Team has announced security releases for<br>
Certified Asterisk 13.13 and Asterisk 13, 14 and 15. The available<br>
security releases are released as versions 13.13-cert8, 13.18.3,<br>
14.7.3 and 15.1.3.<br>
<br>
These releases are available for immediate download at<br>
<a href="http://downloads.asterisk.org/pub/telephony/asterisk/releases" rel="noreferrer" target="_blank">http://downloads.asterisk.org/<wbr>pub/telephony/asterisk/<wbr>releases</a><br>
<br>
The release of these versions resolves the following security<br>
vulnerabilities:<br>
<br>
* AST-2017-013: DOS Vulnerability in Asterisk chan_skinny<br>
If the chan_skinny (AKA SCCP protocol) channel driver is<br>
flooded with certain requests it can cause the asterisk<br>
process to use excessive amounts of virtual memory<br>
eventually causing asterisk to stop processing requests of<br>
any kind.<br>
<br>
For a full list of changes in the current releases, please see the<br>
ChangeLogs:<br>
<a href="http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-13.18.3" rel="noreferrer" target="_blank">http://downloads.asterisk.org/<wbr>pub/telephony/asterisk/<wbr>releases/ChangeLog-13.18.3</a><br>
<a href="http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog=14.7.3" rel="noreferrer" target="_blank">http://downloads.asterisk.org/<wbr>pub/telephony/asterisk/<wbr>releases/ChangeLog=14.7.3</a><br>
<a href="http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-15.1.3" rel="noreferrer" target="_blank">http://downloads.asterisk.org/<wbr>pub/telephony/asterisk/<wbr>releases/ChangeLog-15.1.3</a><br>
<a href="http://downloads.asterisk.org/pub/telephony/certified-asterisk/ChangeLog-certified-13.13-cert8" rel="noreferrer" target="_blank">http://downloads.asterisk.org/<wbr>pub/telephony/certified-<wbr>asterisk/ChangeLog-certified-<wbr>13.13-cert8</a><br>
<br>
The security advisories are available at:<br>
<a href="http://downloads.asterisk.org/pub/security/AST-2017-013.pdf" rel="noreferrer" target="_blank">http://downloads.asterisk.org/<wbr>pub/security/AST-2017-013.pdf</a><br>
<br>
Thank you for your continued support of Asterisk!<br>
<br>--<br>
______________________________<wbr>______________________________<wbr>_________<br>
-- Bandwidth and Colocation Provided by <a href="http://www.api-digital.com" rel="noreferrer" target="_blank">http://www.api-digital.com</a> --<br>
<br>
asterisk-dev mailing list<br>
To UNSUBSCRIBE or update options visit:<br>
<a href="http://lists.digium.com/mailman/listinfo/asterisk-dev" rel="noreferrer" target="_blank">http://lists.digium.com/<wbr>mailman/listinfo/asterisk-dev</a><br></div>