From: George Joseph Date: Wed, 13 Dec 2017 14:34:09 +0000 (-0500) Subject: Update for certified/13.13-cert9 X-Git-Tag: certified/13.13-cert9^0 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=9e5d6d7eb22a7e6af65406584c21d0b702dd92c3;p=thirdparty%2Fasterisk.git Update for certified/13.13-cert9 --- diff --git a/.version b/.version index d33e3bb037..4d40fb002d 100644 --- a/.version +++ b/.version @@ -1 +1 @@ -certified/13.13-cert8 \ No newline at end of file +certified/13.13-cert9 \ No newline at end of file diff --git a/ChangeLog b/ChangeLog index 7c54d0130e..d43056d6b9 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,3 +1,52 @@ +2017-12-13 14:34 +0000 Asterisk Development Team + + * asterisk certified/13.13-cert9 Released. + +2017-11-30 10:12 +0000 [3eea735a39] Joshua Colp + + * AST-2017-012: Place single RTCP report block at beginning of report. + + When the RTCP code was transitioned over to Stasis a code change + was made to keep track of how many reports are present. This count + controlled where report blocks were placed in the RTCP report. + + If a compound RTCP packet was received this logic would incorrectly + place a report block in the wrong location resulting in a write + to an invalid location. + + This change removes this counting logic and always places the report + block at the first position. If in the future multiple reports are + supported the logic can be extended but for now keeping a count + serves no purpose. + + ASTERISK-27382 + ASTERISK-27429 + + Change-Id: Iad6c8a9985c4b608ef493e19c421211615485116 + +2017-12-05 18:04 +0000 [7c0bc72972] Richard Mudgett + + * CDR: Fix deadlock setting some CDR values. + + Setting channel variables with the AMI Originate action caused a deadlock + when you set CDR(amaflags) or CDR(accountcode). This path has the channel + locked when the CDR function is called. The CDR function then + synchronously passes the job to a stasis thread. The stasis handling + function then attempts to lock the channel. Deadlock results. + + * Avoid deadlock by making the CDR function handle setting amaflags and + accountcode directly on the channel rather than passing it off to the CDR + processing code under a stasis thread to do it. + + * Made the CHANNEL function and the CDR function process amaflags the same + way. + + * Fixed referencing the wrong message type in cdr_prop_write(). + + ASTERISK-27460 + + Change-Id: I5eacb47586bc0b8f8ff76a19bd92d1dc38b75e8f + 2017-12-01 19:42 +0000 Asterisk Development Team * asterisk certified/13.13-cert8 Released. diff --git a/asterisk-certified-13.13-cert8-summary.html b/asterisk-certified-13.13-cert9-summary.html similarity index 58% rename from asterisk-certified-13.13-cert8-summary.html rename to asterisk-certified-13.13-cert9-summary.html index 34fabbe248..8de97d5e45 100644 --- a/asterisk-certified-13.13-cert8-summary.html +++ b/asterisk-certified-13.13-cert9-summary.html @@ -1,15 +1,19 @@ -Release Summary - asterisk-certified/13.13-cert8

Release Summary

asterisk-certified/13.13-cert8

Date: 2017-12-01

<asteriskteam@digium.com>

Table of Contents

    +Release Summary - asterisk-certified/13.13-cert9

    Release Summary

    asterisk-certified/13.13-cert9

    Date: 2017-12-13

    <asteriskteam@digium.com>

    Table of Contents

    1. Summary
    2. Contributors
    3. Closed Issues
    4. Diffstat

    Summary

    [Back to Top]

    This release has been made to address one or more security vulnerabilities that have been identified. A security advisory document has been published for each vulnerability that includes additional information. Users of versions of Asterisk that are affected are strongly encouraged to review the advisories and determine what action they should take to protect their systems from these issues.

    Security Advisories:

    The data in this summary reflects changes that have been made since the previous release, asterisk-certified/13.13-cert7.

    Contributors

    [Back to Top]

    This table lists the people who have submitted code, those that have tested patches, as well as those that reported issues on the issue tracker that were resolved in this release. For coders, the number is how many of their patches (of any size) were committed into this release. For testers, the number is the number of times their name was listed as assisting with testing a patch. Finally, for reporters, the number is the number of issues that they reported that were affected by commits that went into this release.

    +
  1. AST-2017-012
    2. +

    The data in this summary reflects changes that have been made since the previous release, asterisk-certified/13.13-cert8.

    Contributors

    [Back to Top]

    This table lists the people who have submitted code, those that have tested patches, as well as those that reported issues on the issue tracker that were resolved in this release. For coders, the number is how many of their patches (of any size) were committed into this release. For testers, the number is the number of times their name was listed as assisting with testing a patch. Finally, for reporters, the number is the number of issues that they reported that were affected by commits that went into this release.

    - -
    CodersTestersReporters
    1 Joshua Colp
    1 George Joseph
    		1 Joshua Colp
    1 Juan Sacco
    1 George Joseph

    Closed Issues

    [Back to Top]

    This is a list of all issues from the issue tracker that were closed by changes that went into this release.

    Bug

    Category: Channels/chan_skinny

    ASTERISK-27452: Security: chan_skinny: Memory exhaustion if flooded with unauthenticated requests
    Reported by: George Joseph
      -
    • [efeb9da0e7] George Joseph -- AST-2017-013: chan_skinny: Call pthread_detach when sess threads end
      • -

    Category: Resources/res_pjsip/Bundling

    ASTERISK-27411: pjsip: TCP connections may not be destroyed
    Reported by: Joshua Colp
      -
    • [191190a982] Joshua Colp -- pjsip: Add patch to allow all transports to be destroyed.
      • -

    Diffstat Results

    [Back to Top]

    This is a summary of the changes to the source code that went into this release that was generated using the diffstat utility.

    0 files changed

    \ No newline at end of file +1 Richard Mudgett
    1 Joshua Colp
    1 Richard Mudgett
    1 Tzafrir Cohen
    1 Vitezslav Novy
    +

    Closed Issues

    [Back to Top]

    This is a list of all issues from the issue tracker that were closed by changes that went into this release.

    Bug

    Category: Functions/func_cdr

    ASTERISK-27460: CDR: Deadlock using AMI Originate with Variable CDR(amaflags)=...
    Reported by: Richard Mudgett
      +
    • [7c0bc72972] Richard Mudgett -- CDR: Fix deadlock setting some CDR values.
      • +

    Category: General

    ASTERISK-27382: crash after an invalid rtcp packet from GT48 FXS gateway
    Reported by: Tzafrir Cohen
      +
    • [3eea735a39] Joshua Colp -- AST-2017-012: Place single RTCP report block at beginning of report.
      • +

    Category: Resources/res_rtp_asterisk

    ASTERISK-27429: res_rtp_asterisk: Multiple reports in an RTCP packet will write past where it should
    Reported by: Vitezslav Novy
      +
    • [3eea735a39] Joshua Colp -- AST-2017-012: Place single RTCP report block at beginning of report.
      • +

    Diffstat Results

    [Back to Top]

    This is a summary of the changes to the source code that went into this release that was generated using the diffstat utility.

    func_cdr.c     |  127 +++++++++++++++++++++++++++++++++++----------------------
+func_channel.c |   11 ----
+2 files changed, 82 insertions(+), 56 deletions(-)

    \ No newline at end of file diff --git a/asterisk-certified-13.13-cert8-summary.txt b/asterisk-certified-13.13-cert9-summary.txt similarity index 64% rename from asterisk-certified-13.13-cert8-summary.txt rename to asterisk-certified-13.13-cert9-summary.txt index f266dba897..07fe8a23fb 100644 --- a/asterisk-certified-13.13-cert8-summary.txt +++ b/asterisk-certified-13.13-cert9-summary.txt @@ -1,8 +1,8 @@ Release Summary - asterisk-certified/13.13-cert8 + asterisk-certified/13.13-cert9 - Date: 2017-12-01 + Date: 2017-12-13 @@ -30,10 +30,10 @@ Security Advisories: - * AST-2017-013 + * AST-2017-012 The data in this summary reflects changes that have been made since the - previous release, asterisk-certified/13.13-cert7. + previous release, asterisk-certified/13.13-cert8. ---------------------------------------------------------------------- @@ -51,9 +51,9 @@ this release. Coders Testers Reporters - 1 Joshua Colp 1 Joshua Colp - 1 George Joseph 1 Juan Sacco - 1 George Joseph + 1 Richard Mudgett 1 Richard Mudgett + 1 Joshua Colp 1 Tzafrir Cohen + 1 Vitezslav Novy ---------------------------------------------------------------------- @@ -66,20 +66,28 @@ Bug - Category: Channels/chan_skinny + Category: Functions/func_cdr - ASTERISK-27452: Security: chan_skinny: Memory exhaustion if flooded with - unauthenticated requests - Reported by: George Joseph - * [efeb9da0e7] George Joseph -- AST-2017-013: chan_skinny: Call - pthread_detach when sess threads end + ASTERISK-27460: CDR: Deadlock using AMI Originate with Variable + CDR(amaflags)=... + Reported by: Richard Mudgett + * [7c0bc72972] Richard Mudgett -- CDR: Fix deadlock setting some CDR + values. - Category: Resources/res_pjsip/Bundling + Category: General - ASTERISK-27411: pjsip: TCP connections may not be destroyed - Reported by: Joshua Colp - * [191190a982] Joshua Colp -- pjsip: Add patch to allow all transports - to be destroyed. + ASTERISK-27382: crash after an invalid rtcp packet from GT48 FXS gateway + Reported by: Tzafrir Cohen + * [3eea735a39] Joshua Colp -- AST-2017-012: Place single RTCP report + block at beginning of report. + + Category: Resources/res_rtp_asterisk + + ASTERISK-27429: res_rtp_asterisk: Multiple reports in an RTCP packet will + write past where it should + Reported by: Vitezslav Novy + * [3eea735a39] Joshua Colp -- AST-2017-012: Place single RTCP report + block at beginning of report. ---------------------------------------------------------------------- @@ -90,4 +98,6 @@ This is a summary of the changes to the source code that went into this release that was generated using the diffstat utility. - 0 files changed + func_cdr.c | 127 +++++++++++++++++++++++++++++++++++---------------------- + func_channel.c | 11 ---- + 2 files changed, 82 insertions(+), 56 deletions(-)