[VOIPSEC] AST-2008-012: Remote crash vulnerability in IAX2
Dan York
dyork at voxeo.com
Mon Dec 15 08:50:46 CST 2008
VOIPSEC readers,
Just to weigh in on this from a VOIPSA point-of-view... we strongly
encourage companies to post VoIP-security-related advisories to this
mailing list. So we welcome the posts from the folks at Digium and do
encourage them to continue posting their security advisories to this
list.
We welcome anyone else to post security advisories to this list as
well (provided, of course, they are related to VoIP security in some
way and are not just general IT security advisories).
Regards,
Dan
On Dec 14, 2008, at 1:58 PM, Security Officer wrote:
> On Saturday 13 December 2008 08:20:07 Diana Cionoiu wrote:
>> It seems to me that Asterisk it's starting to make some advertising
>> on
>> this mail list. How did we ended up here?
>>
>> Diana Cionoiu
>>
>> On Wed, 10 Dec 2008, Asterisk Security Team wrote:
>>> Asterisk Project Security Advisory - AST-2008-012
>
> Uh, it's a security advisory. As in, there's something wrong, that
> people
> should know about, so we publish it widely. If you do not publish
> the same
> for your own software, probably most of the members of this (and
> every other)
> security community would encourage you to start doing so. Security by
> obscurity is not a viable option.
>
> --
> Asterisk Security Officer | security at asterisk.org
>
> _______________________________________________
> Voipsec mailing list
> Voipsec at voipsa.org
> http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
--
Dan York, CISSP, Director of Emerging Communication Technology
Office of the CTO Voxeo Corporation dyork at voxeo.com
Phone: +1-407-455-5859 Skype: danyork http://www.voxeo.com
Blogs: http://blogs.voxeo.com http://www.disruptivetelephony.com
Build voice applications based on open standards.
Find out how at http://www.voxeo.com/free
More information about the Voipsec
mailing list