The release of Certified Asterisk 13.21-cert1 resolves several issues reported by the
community and would have not been possible without your participation.
Thank you!
The following issues are resolved in this release:
Security bugs fixed in this release:
-----------------------------------
| Segmentation fault occurs in asterisk with an invalid SDP fmtp attribute | (Reported by Sandro Gauci) | |
| Segmentation fault occurs in Asterisk with an invalid SDP media format description | (Reported by Sandro Gauci) | |
| Crash occurs when sending a repeated number of INVITE messages over TCP or TLS transport | (Reported by Sandro Gauci) | |
| SUBSCRIBE message with a large Accept value causes stack corruption | (Reported by Sandro Gauci) |
New Features made in this release:
-----------------------------------
| Add cache_pools debug option to pjproject.conf | (Reported by Richard Mudgett) | |
| core: Add support for timelen parsing to ast_parse_arg and ACO. | (Reported by Corey Farrell) | |
| PJSIP: Add CHANNEL(pjsip,request_uri) to get incoming INVITE Request-URI. | (Reported by Richard Mudgett) | |
| Add cache_media_frames debugging option. | (Reported by Richard Mudgett) | |
| res_pjsip: No mechanism exists to limit endpoint identification to IP only | (Reported by Ben Merrills) |
Bugs fixed in this release:
-----------------------------------
| [patch] res_pjsip_endpoint_identifier_ip: Unregister the module for headers. | (Reported by Alexander Traud) | |
| [patch] res_pjsip: Register pjsip_transport_management not externally but internally. | (Reported by Alexander Traud) | |
| [patch] utils/pval: Add -lBlocksRuntime for compiler clang conditionally. | (Reported by Alexander Traud) | |
| res_musiconhold: Music on hold restarts after every announcement | (Reported by lvl) | |
| cdr_mysql: Missing MYSQL_PORT definition | (Reported by Evandro César Arruda) | |
| res_pjsip_session: SDP origin does not use resolved address | (Reported by John M.) | |
| chan_sip: New Channel creation from new SIP dialog with Replaces failed to be properly tracked and destroyed | (Reported by Shannon Price) | |
| PJSIP: Deadlock shutting down subscription TCP connection and sending subscription message. | (Reported by Ross Beer) | |
| [patch] configure: pjsip_evsub_set_uas_timeout not found. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: With external editline, do not require libs for internal editline. | (Reported by Alexander Traud) | |
| ConfBridge: raise ConfbridgeTalking when put on hold and clear talking status | (Reported by Kevin Harwell) | |
| res_pjsip: Crash on TCP PJSIP Transport Disconnect | (Reported by Ross Beer) | |
| Generic PLC doesn't work if the 2 codecs on a channel are equal | (Reported by George Joseph) | |
| [patch] BuildSystem: Remove unused dependency on libltdl. | (Reported by Alexander Traud) | |
| [patch] Make format_ogg_vorbis work on OpenBSD | (Reported by Michiel van Baak) | |
| [patch] BuildSystem: Enable Advanced Linux Sound Architecture (ALSA) in NetBSD. | (Reported by Alexander Traud) | |
| res_pjsip_rfc3326.c rfc3326_use_reason_header doesn't account for more than one 'Reason' header | (Reported by Ross Beer) | |
| [patch] BuildSystem: Enable IMAP storage on openSUSE and Arch Linux. | (Reported by Alexander Traud) | |
| [patch] res_srtp: Add support for libsrtp2.x on openSUSE. | (Reported by Alexander Traud) | |
| NetBSD Build Needs RPATH set in 1.2.25 | (Reported by Curt Sampson) | |
| BuildSystem: Enable Better Backtraces in FreeBSD. | (Reported by Alexander Traud) | |
| uuid_generate_random detection failure | (Reported by John Nemeth) | |
| [patch] BuildSystem: Enable PortAudio in NetBSD. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: AC_PATH_PROG sets to colon character when not found. | (Reported by Alexander Traud) | |
| AMI Action VoicemailUsersList returns 0 MessageCount | (Reported by Sébastien Duthil) | |
| chan_sip: RTP framing issues on outgoing calls | (Reported by Jean Aunis - Prescom) | |
| res_pjsip_rfc3326: Order of 'Reason' headers break many endpoints | (Reported by Ross Beer) | |
| [patch] BuildSystem: Enable Lua in NetBSD. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: Depend not implicitly but explicitly on external libraries. | (Reported by Alexander Traud) | |
| [patch] res_http_post: Enable GMime in NetBSD. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: Enable autotools in NetBSD. | (Reported by Alexander Traud) | |
| [patch] chan_unistim: NetBSD has an incompatible struct in_pktinfo. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: Cast any intptr_t explicitly to its proposed type. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: Detect whether uselocale(.) is available. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: Avoid re-defining of pthread_* on NetBSD. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: Install init scripts on openSUSE Tumbleweed. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: Avoid == for comparison in ./configure. | (Reported by Alexander Traud) | |
| app_amd.so returning TOOLONG before reaching the timeout | (Reported by Michael Cargile) | |
| Documentation: voicemail.conf.sample shows 512 limit for emailbody field, however this is only true if compiled with LOW_MEMORY option | (Reported by Fran Vicente) | |
| PJSIP: Crash during SIP attended transfer. | (Reported by Bryan Walters) | |
| [patch] install_prereq: Update FreeBSD libraries. | (Reported by Alexander Traud) | |
| Wrong remote identity and target in dialog package XML in NOTIFY | (Reported by Alejandro Padilla) | |
| Asterisk "doc/lang/language-criteria.txt" needs update or removal. | (Reported by Rusty Newton) | |
| ICE fails with no candidate nominated | (Reported by Thomas Guebels) | |
| [patch] rtp_engine: Load format name / mime type in uppercase again. | (Reported by Alexander Traud) | |
| res_pjsip: Endpoint destruction does not free DTLS configuration | (Reported by Mak Dee) | |
| [patch] install_prereq: Update OpenBSD libraries. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: Enable IMAP storage on OpenBSD. | (Reported by Alexander Traud) | |
| [patch] res_calendar: Specialized calendars depend on symbols of general calendar. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: Enable system provided libedit on OpenBSD. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: Remove chan_h323 leftovers. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: Invoke ldconfig with previous paths. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: Do not warn when bash is not installed. | (Reported by Alexander Traud) | |
| chan_sip: Crash processing CANCEL request | (Reported by Leandro Dardini) | |
| Internal pjproject build doesn't disable bcg729 | (Reported by Stuart Henderson) | |
| [patch] codecs: Add support for WebRTC iLBC 2.0. | (Reported by Alexander Traud) | |
| [patch] backtrace: Avoid -Wlogical-not-parentheses. | (Reported by Alexander Traud) | |
| [patch] install_prereq: Update Debian/Ubuntu libraries. | (Reported by Alexander Traud) | |
| CDR: Leaking channel snapshots allocated by stasis_channel.c | (Reported by Kristijan Vrban) | |
| chan_console: cannot read and write at the same time with alsa backend | (Reported by Tzafrir Cohen) | |
| (null) string tailing after AsyncAGIEnd AMI event | (Reported by sungtae kim) | |
| Null pointer Crash in PJSIP MWI | (Reported by Joshua Elson) | |
| Subscriptions Persist After Expiration and TCP/TLS Disconnect | (Reported by Ross Beer) | |
| res_pjsip: If SIP response is received during shutdown a crash may occur | (Reported by Joshua Colp) | |
| [patch] BuildSystem: Enable autotools in FreeBSD. | (Reported by Alexander Traud) | |
| [patch] app_voicemail: Avoid always true warnings with clang. | (Reported by Alexander Traud) | |
| [patch] install_prereq: Update RHEL/CentOS/Fedora libraries. | (Reported by Alexander Traud) | |
| core: macOS devmode build fails: variable 'freeswap' set but not used | (Reported by David M. Lee) | |
| [patch] editline: Avoid shifting a negative signed value. | (Reported by Alexander Traud) | |
| Problems with siren14 codec; problems with siren7 sound files. | (Reported by Steve Murphy) | |
| [patch] configure.ac in 1.4.37 broken with autoconf 2.60 | (Reported by Stéphan Kochen) | |
| [patch] install_prereq: Download latest Jansson. | (Reported by Alexander Traud) | |
| [patch] res_config_mysql: Avoid the header mysql_version.h. | (Reported by Alexander Traud) | |
| When running ./contrib/scripts/install_prereq install-unpackaged pjproject is installed in wrong place | (Reported by PowerPBX) | |
| [patch] BuildSystem: AC_CONFIG_AUX_DIR needs a directory. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: Allow make clean all again. | (Reported by Alexander Traud) | |
| [patch] install_prereq: Support package manager DNF. | (Reported by Alexander Traud) | |
| Placing call on hold temporarily locks up set | (Reported by Igor Goncharovsky) | |
| [patch] BuildSystem: Use the detected name for MD5 everywhere. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: Invoke install not in GNU but POSIX style. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: In OpenBSD, xmlstarlet is xml. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: Detect external library Lua in version 5.3. | (Reported by Alexander Traud) | |
| res_pjsip: Segfault when calling pjsip_hdr_print_on in sip_msg.c:581 | (Reported by Ross Beer) | |
| [patch] BuildSystem: Avoid $EUID and use id -u instead. | (Reported by Alexander Traud) | |
| menuselect : remove obsolete TRACE_FRAMES compiler flag | (Reported by Jean Aunis - Prescom) | |
| [patch] res_config_pgsql: Avoid typecasting an int to unsigned char. | (Reported by Alexander Traud) | |
| [patch] clang 5 does not know -Wno-format-truncation | (Reported by Alexander Traud) | |
| [patch] app_osplookup.c: Avoid a format truncation. | (Reported by Alexander Traud) | |
| [patch] chan_ooh323: Avoid typecasting an int to unsigned short. | (Reported by Alexander Traud) | |
| res_pjsip_endpoint_identifier_ip only matches against header if match by ip fails | (Reported by George Joseph) | |
| [patch] translate: Avoid absolute value on unsigned substraction. | (Reported by Alexander Traud) | |
| [patch] res_curl: Avoid error message on unload. | (Reported by Alexander Traud) | |
| [patch] clang 5.0: implicit conversion to char changes value to negative. | (Reported by Alexander Traud) | |
| [patch] editline: Avoid comparison between pointer and zero character constant. | (Reported by Alexander Traud) | |
| [patch] codec_gsm: Avoid shifting a negative signed value. | (Reported by Alexander Traud) | |
| Asterisk configure fails on 'cannot find ptlib-config', despite ptlib-config existing | (Reported by Rusty Newton) | |
| [patch] chan_ooh323: Limit outgoinglimit to positive values as intended. | (Reported by Alexander Traud) | |
| [patch] ooh323cDriver: Fix typo in header guard. | (Reported by Alexander Traud) | |
| [patch] Avoid obsolete warnings on autoconf. | (Reported by Alexander Traud) | |
| 'cdr submit' fails: batch mode not enabled. | (Reported by Tzafrir Cohen) | |
| ICE candidate parser - ICE foundation parsing too short | (Reported by Michele Prà ) | |
| Asterisk Turkish Language Set Problem | (Reported by Halil Ä°brahim YILDIZ) | |
| Documentation fix - MASTER_CHANNEL Unexpected Behaviour | (Reported by Shane Mitchell) | |
| Compiler optimizations can break module load sequence. | (Reported by abelbeck) | |
| Security: Authenticated SUBSCRIBE without Contact crashes asterisk | (Reported by Ross Beer) | |
| Typo's | (Reported by Walter Doekes) | |
| bridge: Old channel video source not set to NULL after unref | (Reported by Richard Kenner) | |
| Asterisk Hangs with Bad file descriptor on read() | (Reported by Abhay Gupta) | |
| AMI bridge of channels results in MOH not destroyed and robotic audio on one channel | (Reported by Zane Conkle) | |
| chan_console: 'set active' fails to work | (Reported by Tzafrir Cohen) | |
| ConfBridge sound_muted does not work from CLI or AMI | (Reported by Thomas Frederiksen) | |
| Transfer application does not work with Local channels - documentation misleading | (Reported by Ivan Ullmann) | |
| chan_sip: "rejected because extension not found" should be logged as a security event | (Reported by Brian J. Murrell) | |
| Strictrtp has issues to qualify video rtp streams | (Reported by Wim De Vlaminck) | |
| Coverity Report: Fix issues for error type CHAR_IO | (Reported by Matt Jordan) | |
| iax.conf demo peer is invalid | (Reported by Tzafrir Cohen) | |
| README refers to security documents that do not exist. | (Reported by Corey Farrell) | |
| "core set verbose" behaves strangely, can't alias it, cli.conf example broken | (Reported by Tim Ringenbach at Asteria Solutions Group) | |
| crash after an invalid rtcp packet from GT48 FXS gateway | (Reported by Tzafrir Cohen) | |
| res_rtp_asterisk: Multiple reports in an RTCP packet will write past where it should | (Reported by Vitezslav Novy) | |
| Identify causes and fix pjsip/resolver/srv/failover/in_dialog/transport_tcp | (Reported by Corey Farrell) | |
| Queue members with hints for state_interface get stuck in "In Use" state. | (Reported by Steven T. Wheeler) | |
| chan_sip: Crash Asterisk (in sip_request_call at chan_sip.c) by making a call to a single character in a dot pattern match | (Reported by Dwayne Hubbard) | |
| pjsip_options: qualify_frequency sometimes not applied on reload | (Reported by John Bigelow) | |
| CLI Completion Not Working | (Reported by Ross Beer) | |
| CDR: Deadlock using AMI Originate with Variable CDR(amaflags)=... | (Reported by Richard Mudgett) | |
| RTP: Blind transfer direct media scenario results in one way audio. | (Reported by Richard Mudgett) | |
| SIP ICE support - remove hardcoded limitation on SDP size, make ICE support disabled by default in SIP, maybe provide a better warning message | (Reported by Roy) | |
| chan_sip: Guests disallowed via TCP (or TLS) if existing peer from same IP. | (Reported by Alexander Traud) | |
| pjsip: Clean up WebRTC disables | (Reported by abelbeck) | |
| Security: chan_skinny: Memory exhaustion if flooded with unauthenticated requests | (Reported by George Joseph) | |
| res_http_post: Don't require GMIME_MAJOR_VERSION | (Reported by Joshua Colp) | |
| Transcoding makes bad choice in high-rate translations | (Reported by Richard Kenner) | |
| ARI: Updating a bridge gives wrong error message. | (Reported by Frank Durden) | |
| [patch] column and row headers for Signed Linear format variants in output of 'core show translation' are ambiguous | (Reported by Rusty Newton) | |
| H323 audio starts with a delay of 2 seconds. | (Reported by Marco Giordani) | |
| pjsip: 183 without To tag does not negotiate media | (Reported by Kevin Harwell) | |
| [patch] ICE: server-reflexive candidates (srflx) with Dual-Stack. | (Reported by Alexander Traud) | |
| [patch] chan_sip/ICE: Square brackets around IPv6 addresses. | (Reported by Alexander Traud) | |
| Asterisk fails to build when openssl headers are not installed. | (Reported by Corey Farrell) | |
| Asterisk fails to configure on MacOS Sierra | (Reported by Ivan Larionov) | |
| RTP source learning not working with devices that have some clock issues | (Reported by nappsoft) | |
| Attended transfer crashes in Asterisk 13.17.2 | (Reported by Alessandro Pimenta) | |
| Bridging: Crash freeing a frame that's already been freed | (Reported by Richard Kenner) | |
| core: Audiohook freeing interpolated frame when it shouldn't. | (Reported by Mikhail) | |
| app_record: We set the RECORD_STATUS channel variable before closing the file | (Reported by George Joseph) | |
| res_hep_pjsip: For WebRTC clients Asterisk insert same ip address in "source ip address" and "destination ip address" fields in HEP packets | (Reported by Max Norba) | |
| res_http_websocket: Wrong LocalAddress (it is equal to RemoteAddress) | (Reported by Vasilii Rogin) | |
| asterisk.conf: Setting astctl without setting astrundir is ineffective. | (Reported by Corey Farrell) | |
| pjsip: TCP connections may not be destroyed | (Reported by Joshua Colp) | |
| res_pjsip_session: RTP instances leak on 488 responses. | (Reported by Corey Farrell) | |
| chan_sip: Security vulnerability with client code header (revisited) | (Reported by Richard Mudgett) | |
| (Security) Function in PJSIP 2.7 miscalculates the length of an unsigned long variable in 64bit machines | (Reported by Kim youngsung) | |
| Regression: Deadlock between AOR named lock and pjproject grp lock | (Reported by shaurya jain) | |
| res_pjsip: Crash occurs when an empty contact read from astdb or database | (Reported by Aaron An) | |
| res_pjsip: PIDF contact field has malformed/invalid XML | (Reported by basildane) | |
| res_pjsip: TLS options do not handle empty values | (Reported by seanchann.zhou) | |
| [patch] tcptls: Print notice when TLS is enabled but not configured. | (Reported by Alexander Traud) | |
| format_ogg_opus: remove from source | (Reported by Kevin Harwell) | |
| [patch] libsrtp-2.x.x + AES-GCM support | (Reported by Alexander Traud) | |
| Modules: Fix issues with CLI completion. | (Reported by Corey Farrell) | |
| Regression: pjsip 13.18.0 - from_user - "+" character isn't allowed any more | (Reported by Michael Maier) | |
| Audit menuselect module dependencies | (Reported by Corey Farrell) | |
| Optional API modules should not allow unload. | (Reported by Corey Farrell) | |
| Bridge() dialplan application fails without setting BRIDGERESULT channel variable | (Reported by James Terhune) | |
| Typo in CHANNEL(dtmf_features) usage documentation | (Reported by Igor Goncharovsky) | |
| GCC 7 warning: app_voicemail.c: In function 'imap_delete_old_greeting' | (Reported by Anthony Messina) | |
| jitterbuffer: Does not handle case where translator returns null frame. | (Reported by Joshua Elson) | |
| core: Disabling xmldoc support does not work. Also results in abort during Asterisk startup. | (Reported by Mr Dini) | |
| ARI: Node ARI client broken in latest versions of 13 and 14 | (Reported by Benjamin Keith Ford) | |
| Expires handling in SUBSCRIBE confuses the absence of the Expires header field with an unsubscribe action. | (Reported by Jonathan Cloots) | |
| The config_hook unit test causes Asterisk to crash if run a second time | (Reported by George Joseph) | |
| res_pjsip: SDP contains IP4 instead of IP6 when rtp_ipv6 set to yes | (Reported by Martin Cisárik) | |
| res_xmpp: Crash if OAuth 2.0 is used before curl is loaded | (Reported by Ronald Raikes) | |
| [patch] chan_sip: Crypto attribute not last but first on SDP media level. | (Reported by Alexander Traud) | |
| res_pjsip_pubsub.so, res_pjsip_refer.so: Assertion on un/re-load: mod.id == -1 | (Reported by Tzafrir Cohen) | |
| Cannot disable SIP debugging via CLI after enabling with conf file option - also 'sip set debug off' reports debugging disabled, when it really isn't | (Reported by Rusty Newton) | |
| Missing openssl dependencies in res_rtp_asterisk and tcptls | (Reported by Tzafrir Cohen) | |
| [patch] res_pjsip_session: SIP/SDP origin (o=) contains local address. | (Reported by Alexander Traud) | |
| Fails to build in FreeBSD due to sys/sysmacros.h not existing there | (Reported by Guido Falsi) | |
| backtrace.c: Crash due to double-free. | (Reported by Corey Farrell) | |
| [patch] Crash on ast_ssl_teardown when stopping. | (Reported by Alexander Traud) | |
| sip_to_pjsip not correctly handling disallow=all directive | (Reported by Torrey Searle) |
Improvements made in this release:
-----------------------------------
| Enable in-dialog NOTIFY on chan_pjsip channels | (Reported by Nathan Bruning) | |
| cdr_radius: use radcli instead of freeradius-client | (Reported by Tzafrir Cohen) | |
| [patch] install_prereq: Add Slackware (somehow). | (Reported by Alexander Traud) | |
| [patch] install_prereq: Add Gentoo Linux. | (Reported by Alexander Traud) | |
| [patch] install_prereq: Add Arch Linux. | (Reported by Alexander Traud) | |
| [patch] install_prereq: Add SUSE. | (Reported by Alexander Traud) | |
| libsrtp-2.x.x support | (Reported by Alex) | |
| [patch] BuildSystem: Add NetBSD. | (Reported by Alexander Traud) | |
| PJSIP: Update bundled PJPROJECT to version 2.7.2 | (Reported by Richard Mudgett) | |
| [patch] install_prereq: Add NetBSD. | (Reported by Alexander Traud) | |
| [patch] BuildSystem: Allow newer autotools on OpenBSD. | (Reported by Alexander Traud) | |
| app_confbridge: Add Muted to ConfbridgeJoin and channel snapshot headers to ConfbridgeList AMI events | (Reported by Richard Mudgett) | |
| app_confbridge/bridge_softmix: When channel muted report talking stopped if was talking. | (Reported by Richard Mudgett) | |
| Reduce verbosity while loading PBX extensions. | (Reported by Ludovic Gasc (Eyepea)) | |
| [patch] Add config option to play a prompt to the "winner" in app_followme | (Reported by Graham Mainwaring) | |
| 3PCC patch for AMI "SIPnotify" | (Reported by Yasuhiko Kamata) | |
| cdr.c: Minor code optimizations. | (Reported by Richard Mudgett) | |
| [PATCH] When failing to acquire target during attended transfer, display wanted extension | (Reported by Niklas Larsson) | |
| app_voicemail: Add new object for VoicemailUserEntry | (Reported by sungtae kim) | |
| [patch]contrib/scripts: add a way to migrate from chan_sip to chan_pjsip realtime | (Reported by Torrey Searle) | |
| ast_coredumper: allow pointing out the asterisk binary explicitly | (Reported by Tzafrir Cohen) | |
| Compilation warning for invert.c (array subscript is above array bounds) | (Reported by Marcello Ceschia) | |
| Upgrade bundled PJPROJECT to 2.7 | (Reported by Richard Mudgett) | |
| CDR performance needs improvement. | (Reported by Richard Mudgett) |
For a full list of changes in this release, please see the ChangeLog:
http://downloads.asterisk.org/pub/telephony/certified-asterisk/ChangeLog-certified-13.21-cert1
Thank you for your continued support of Asterisk!
-- _____________________________________________________________________ -- Bandwidth and Colocation Provided by http://www.api-digital.com -- asterisk-announce mailing list To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-announce
|