Upstream releases
Bernhard Schmidt
berni at debian.org
Tue Jan 29 09:50:51 GMT 2019
Am 29.01.19 um 02:13 schrieb Sean M. Pappalardo:
Dear Sean,
> What is the process for keeping Asterisk up to date in Stable? Upstream
> is at 13.24 and stable still remains at 13.14, leaving many security
> holes unpatched. (And indeed, our systems are being attacked.)
>
> Thank you very much for your time and work!
Debian (as almost all other non-rolling Distributions) do not introduce
new upstream versions (that might cause regressions, as it is frequently
visible with Asterisk updates) during a stable release, but backport the
security fixes.
Have a look here
https://security-tracker.debian.org/tracker/source-package/asterisk
https://tracker.debian.org/media/packages/a/asterisk/changelog-113.14.1dfsg-2deb9u4
To our knowledge there are currently no unpatched security holes in
stable. If you are aware of any unpatched CVE in Debian stable please
drop us a note.
Bernhard
More information about the Pkg-voip-maintainers
mailing list