From 0800ab33b5502d3a28409f813a698e298c55a2a7 Mon Sep 17 00:00:00 2001 From: George Joseph Date: Wed, 5 Apr 2017 07:36:58 -0500 Subject: [PATCH] Update for 13.15.0-rc3 --- .version | 2 +- ChangeLog | 44 +++++++++++++++++++ ....html => asterisk-13.15.0-rc3-summary.html | 18 ++++---- ...ry.txt => asterisk-13.15.0-rc3-summary.txt | 40 +++++++++++------ 4 files changed, 82 insertions(+), 22 deletions(-) rename asterisk-13.15.0-rc2-summary.html => asterisk-13.15.0-rc3-summary.html (57%) rename asterisk-13.15.0-rc2-summary.txt => asterisk-13.15.0-rc3-summary.txt (68%) diff --git a/.version b/.version index 77b9124c08..ca01771c23 100644 --- a/.version +++ b/.version @@ -1 +1 @@ -13.15.0-rc2 \ No newline at end of file +13.15.0-rc3 \ No newline at end of file diff --git a/ChangeLog b/ChangeLog index 0cd67e53b2..24464b64ff 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,3 +1,47 @@ +2017-04-05 12:36 +0000 Asterisk Development Team + + * asterisk 13.15.0-rc3 Released. + +2017-04-03 15:38 +0000 [2634f48fb5] Richard Mudgett + + * res_pjsip_sdp_rtp.c: Don't alter global addr variable. + + * create_rtp(): Fix unexpected alteration of global address_rtp if a + transport is bound to an address. + + * create_rtp(): Fix use of uninitialized memory if the endpoint RTP media + address is invalid or the transport has an invalid address. + + ASTERISK-26851 + + Change-Id: Icde42e65164a88913cb5c2601b285eebcff397b7 + +2017-03-27 09:03 +0000 [d0033a01c4] Corey Farrell + + * CDR: Protect from data overflow in ast_cdr_setuserfield. + + ast_cdr_setuserfield wrote to a fixed length field using strcpy. This could + result in a buffer overrun when called from chan_sip or func_cdr. This patch + adds a maximum bytes written to the field by using ast_copy_string instead. + + ASTERISK-26897 #close + patches: + 0001-CDR-Protect-from-data-overflow-in-ast_cdr_setuserfie.patch submitted + by Corey Farrell (license #5909) + + Change-Id: Ib23ca77e9b9e2803a450e1206af45df2d2fdf65c + +2017-04-03 13:56 +0000 [2b8ee06ce9] Richard Mudgett + + * res_pjsip: Fix transport ref leak. + + We were leaking a transport ref in multihomed_on_rx_message() which + resulted in the FRACK about excessive ref counts. + + ASTERISK-26916 #close + + Change-Id: I7a96658a9614a060565bb9ad51cb1c9c11ee145f + 2017-03-31 14:09 +0000 Asterisk Development Team * asterisk 13.15.0-rc2 Released. diff --git a/asterisk-13.15.0-rc2-summary.html b/asterisk-13.15.0-rc3-summary.html similarity index 57% rename from asterisk-13.15.0-rc2-summary.html rename to asterisk-13.15.0-rc3-summary.html index 99ea213c42..d23e5fdfa6 100644 --- a/asterisk-13.15.0-rc2-summary.html +++ b/asterisk-13.15.0-rc3-summary.html @@ -1,13 +1,15 @@ -Release Summary - asterisk-13.15.0-rc2

Release Summary

asterisk-13.15.0-rc2

Date: 2017-03-31

<asteriskteam@digium.com>

Table of Contents

    +Release Summary - asterisk-13.15.0-rc3

    Release Summary

    asterisk-13.15.0-rc3

    Date: 2017-04-05

    <asteriskteam@digium.com>

    Table of Contents

    1. Summary
    2. Contributors
    3. Closed Issues
    4. Diffstat
      5. -

    Summary

    [Back to Top]

    This release is a point release of an existing major version. The changes included were made to address problems that have been identified in this release series, or are minor, backwards compatible new features or improvements. Users should be able to safely upgrade to this version if this release series is already in use. Users considering upgrading from a previous version are strongly encouraged to review the UPGRADE.txt document as well as the CHANGES document for information about upgrading to this release series.

    The data in this summary reflects changes that have been made since the previous release, asterisk-13.15.0-rc1.

    Contributors

    [Back to Top]

    This table lists the people who have submitted code, those that have tested patches, as well as those that reported issues on the issue tracker that were resolved in this release. For coders, the number is how many of their patches (of any size) were committed into this release. For testers, the number is the number of times their name was listed as assisting with testing a patch. Finally, for reporters, the number is the number of issues that they reported that were affected by commits that went into this release.

    +

    Summary

    [Back to Top]

    This release is a point release of an existing major version. The changes included were made to address problems that have been identified in this release series, or are minor, backwards compatible new features or improvements. Users should be able to safely upgrade to this version if this release series is already in use. Users considering upgrading from a previous version are strongly encouraged to review the UPGRADE.txt document as well as the CHANGES document for information about upgrading to this release series.

    The data in this summary reflects changes that have been made since the previous release, asterisk-13.15.0-rc2.

    Contributors

    [Back to Top]

    This table lists the people who have submitted code, those that have tested patches, as well as those that reported issues on the issue tracker that were resolved in this release. For coders, the number is how many of their patches (of any size) were committed into this release. For testers, the number is the number of times their name was listed as assisting with testing a patch. Finally, for reporters, the number is the number of issues that they reported that were affected by commits that went into this release.

    - -
    CodersTestersReporters
    1 Walter Doekes
    		1 George Joseph

    Closed Issues

    [Back to Top]

    This is a list of all issues from the issue tracker that were closed by changes that went into this release.

    Bug

    Category: Core/BuildSystem

    ASTERISK-26705: libasteriskssl.so not found when asterisk is installed for the 1st time
    Reported by: George Joseph
      -
    • [276c9172f7] Walter Doekes -- build: Fix deb build issues with fakeroot
      • -

    Diffstat Results

    [Back to Top]

    This is a summary of the changes to the source code that went into this release that was generated using the diffstat utility.

    Makefile  |   52 +++++++++++++++++++++++++++++++++++++++-------------
-configure |    2 --
-2 files changed, 39 insertions(+), 15 deletions(-)

    \ No newline at end of file +2 Richard Mudgett
    1 Corey Farrell
    1 Richard Begg
    1 Alex Villacís Lasso
    1 Ross Beer
    +

    Closed Issues

    [Back to Top]

    This is a list of all issues from the issue tracker that were closed by changes that went into this release.

    Bug

    Category: Channels/chan_sip/General

    ASTERISK-26897: chan_sip: Security vulnerability with client code header
    Reported by: Alex Villacís Lasso
      +
    • [d0033a01c4] Corey Farrell -- CDR: Protect from data overflow in ast_cdr_setuserfield.
      • +

    Category: Resources/res_pjsip

    ASTERISK-26916: res_pjsip: Excessive refcount reached on transport ao2 object
    Reported by: Ross Beer
      +
    • [2b8ee06ce9] Richard Mudgett -- res_pjsip: Fix transport ref leak.
      • +

    Category: Resources/res_pjsip_sdp_rtp

    ASTERISK-26851: res_pjsip_sdp_rtp: RTP instance does not use same IP as explicit transport
    Reported by: Richard Begg
      +
    • [2634f48fb5] Richard Mudgett -- res_pjsip_sdp_rtp.c: Don't alter global addr variable.
      • +

    Diffstat Results

    [Back to Top]

    This is a summary of the changes to the source code that went into this release that was generated using the diffstat utility.

    0 files changed

    \ No newline at end of file diff --git a/asterisk-13.15.0-rc2-summary.txt b/asterisk-13.15.0-rc3-summary.txt similarity index 68% rename from asterisk-13.15.0-rc2-summary.txt rename to asterisk-13.15.0-rc3-summary.txt index e95084dab7..351c153254 100644 --- a/asterisk-13.15.0-rc2-summary.txt +++ b/asterisk-13.15.0-rc3-summary.txt @@ -1,8 +1,8 @@ Release Summary - asterisk-13.15.0-rc2 + asterisk-13.15.0-rc3 - Date: 2017-03-31 + Date: 2017-04-05 @@ -31,7 +31,7 @@ to this release series. The data in this summary reflects changes that have been made since the - previous release, asterisk-13.15.0-rc1. + previous release, asterisk-13.15.0-rc2. ---------------------------------------------------------------------- @@ -49,7 +49,9 @@ this release. Coders Testers Reporters - 1 Walter Doekes 1 George Joseph + 2 Richard Mudgett 1 Richard Begg + 1 Corey Farrell 1 Alex VillacAs Lasso + 1 Ross Beer ---------------------------------------------------------------------- @@ -62,13 +64,27 @@ Bug - Category: Core/BuildSystem + Category: Channels/chan_sip/General - ASTERISK-26705: libasteriskssl.so not found when asterisk is installed for - the 1st time - Reported by: George Joseph - * [276c9172f7] Walter Doekes -- build: Fix deb build issues with - fakeroot + ASTERISK-26897: chan_sip: Security vulnerability with client code header + Reported by: Alex VillacAs Lasso + * [d0033a01c4] Corey Farrell -- CDR: Protect from data overflow in + ast_cdr_setuserfield. + + Category: Resources/res_pjsip + + ASTERISK-26916: res_pjsip: Excessive refcount reached on transport ao2 + object + Reported by: Ross Beer + * [2b8ee06ce9] Richard Mudgett -- res_pjsip: Fix transport ref leak. + + Category: Resources/res_pjsip_sdp_rtp + + ASTERISK-26851: res_pjsip_sdp_rtp: RTP instance does not use same IP as + explicit transport + Reported by: Richard Begg + * [2634f48fb5] Richard Mudgett -- res_pjsip_sdp_rtp.c: Don't alter + global addr variable. ---------------------------------------------------------------------- @@ -79,6 +95,4 @@ This is a summary of the changes to the source code that went into this release that was generated using the diffstat utility. - Makefile | 52 +++++++++++++++++++++++++++++++++++++++------------- - configure | 2 -- - 2 files changed, 39 insertions(+), 15 deletions(-) + 0 files changed -- 2.47.3