Debian Linux Security Advisory 1952-2 – Security support for asterisk, an Open Source PBX and telephony toolkit, has been discontinued for the oldstable distribution (etch). The current version in oldstable is not supported by upstream anymore and is affected by several security issues. Backporting fixes for these and any future issues has become unfeasible and therefore we need to drop our security support for the version in oldstable. We recommend that all asterisk users upgrade to the stable distribution (lenny).
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/83878/dsa-1952-2.txt
Source: https://packetstormsecurity.com/files/83878/Debian-Linux-Security-Advisory-1952-2.html