From: Asterisk Development Team Date: Thu, 4 Mar 2021 16:49:33 +0000 (-0500) Subject: Update for certified/16.8-cert7 X-Git-Tag: certified/16.8-cert7^0 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=9e8def6e8b451ac6bca54ec2fd119e35ec84af62;p=thirdparty%2Fasterisk.git Update for certified/16.8-cert7 --- diff --git a/.version b/.version index 9f0ec1bb2f..9cfcbb348d 100644 --- a/.version +++ b/.version @@ -1 +1 @@ -certified/16.8-cert6 \ No newline at end of file +certified/16.8-cert7 \ No newline at end of file diff --git a/ChangeLog b/ChangeLog index 1c5434b8b9..26e94d7660 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,3 +1,73 @@ +2021-03-04 16:49 +0000 Asterisk Development Team + + * asterisk certified/16.8-cert7 Released. + +2021-02-25 13:50 +0000 [b9fc07ca53] Ben Ford + + * AST-2021-006 - res_pjsip_t38.c: Check for session_media on reinvite. + + When Asterisk sends a reinvite negotiating T38 faxing, it's possible a + crash can occur if the response contains a m=image and zero port. The + reinvite callback code now checks session_media to see if it is null or + not before trying to access the udptl variable on it. + + ASTERISK-29305 + + Change-Id: I1dfc51c5fa586e38579ede4bc228edee213ccaa9 + +2021-03-03 07:32 +0000 [54f4be115f] Joshua C. Colp + + * channel: Fix memory leak in suppress API. + + A frame suppression API exists as part of channels + which allows audio frames to or from a channel to + be dropped. The MuteAudio AMI action uses this + API to perform its job. + + This API uses a framehook to intercept flowing + audio and drop it when appropriate. It is the + responsibility of the framehook to free the + frame it is given if it changes the frame. The + suppression API failed to do this resulting in + a leak of audio frames. + + This change adds the freeing of these frames. + + ASTERISK-29071 + + Change-Id: Ie50acd454d672d36af914050c327d2e120d8ba7b + +2020-05-18 09:05 +0000 [df34b007d9] Joshua C. Colp + + * bridge: Don't try to match audio formats. + + When bridging channels we were trying to match the audio + formats of both sides in combination with the configured + formats. While this is allowed in SDP in practice this + causes extra reinvites and problems. This change ensures + that audio streams use the formats of the first existing + active audio stream. It is only when other stream types + (like video) exist that this will result in re-negotiation + occurring for those streams only. + + ASTERISK-28871 + + Change-Id: I22f5a3e7db29e00c165e74d05d10856f6086fe47 + +2021-02-15 12:24 +0000 [b12fcaaaf0] Ben Ford + + * res_pjsip_session.c: Check topology on re-invite. + + Removes an unnecessary check for the conditional that compares the + stream topologies to see if they are equal to suppress re-invites. This + was a problem when a Digium phone received an INVITE that offered codecs + different than what it supported, causing Asterisk to send the + re-invite. + + ASTERISK-29303 + + Change-Id: I04dc91befb2387904e28a9aaeaa3bcdbcaa7fa63 + 2021-02-18 16:51 +0000 Asterisk Development Team * asterisk certified/16.8-cert6 Released. diff --git a/asterisk-certified-16.8-cert6-summary.html b/asterisk-certified-16.8-cert6-summary.html deleted file mode 100644 index c34c4de234..0000000000 --- a/asterisk-certified-16.8-cert6-summary.html +++ /dev/null @@ -1,32 +0,0 @@ -Release Summary - asterisk-certified/16.8-cert6

Release Summary

asterisk-certified/16.8-cert6

Date: 2021-02-18

<asteriskteam@digium.com>

Table of Contents

    -
  1. Summary
    2. -
  2. Contributors
    3. -
  3. Closed Issues
    4. -
  4. Other Changes
    5. -
  5. Diffstat
    6. -

Summary

[Back to Top]

This release has been made to address one or more security vulnerabilities that have been identified. A security advisory document has been published for each vulnerability that includes additional information. Users of versions of Asterisk that are affected are strongly encouraged to review the advisories and determine what action they should take to protect their systems from these issues.

Security Advisories:

The data in this summary reflects changes that have been made since the previous release, asterisk-certified/16.8-cert5.

Contributors

[Back to Top]

This table lists the people who have submitted code, those that have tested patches, as well as those that reported issues on the issue tracker that were resolved in this release. For coders, the number is how many of their patches (of any size) were committed into this release. For testers, the number is the number of times their name was listed as assisting with testing a patch. Finally, for reporters, the number is the number of issues that they reported that were affected by commits that went into this release.

- - -
CodersTestersReporters
2 Joshua C. Colp
1 Sean Bright
1 Kevin Harwell
1 Alexander Traud
1 Mauri de Souza Meneguzzo (3CPlus)
1 Gregory Massel
1 Alexander Traud
1 Edvin Vidmar
1 Alexander Traud

Closed Issues

[Back to Top]

This is a list of all issues from the issue tracker that were closed by changes that went into this release.

Security

Category: Resources/res_srtp

ASTERISK-29260: sRTP Replay Protection ignored; even tears down long calls
Reported by: Alexander Traud
    -
  • [93468c531a] Alexander Traud -- rtp: Enable srtp replay protection
    • -

Bug

Category: Resources/res_pjsip

ASTERISK-29196: res_pjsip: Segmentation fault
Reported by: Mauri de Souza Meneguzzo (3CPlus)
    -
  • [23e96e6e17] Joshua C. Colp -- pjsip: Make modify_local_offer2 tolerate previous failed SDP.
    • -

Category: Resources/res_pjsip_session

ASTERISK-29203: res_pjsip_t38: Crash when changing state
Reported by: Gregory Massel
    -
  • [bb5b336f78] Kevin Harwell -- AST-2021-002: Remote crash possible when negotiating T.38
    • -

Category: Resources/res_pjsip_t38

ASTERISK-29203: res_pjsip_t38: Crash when changing state
Reported by: Gregory Massel
    -
  • [bb5b336f78] Kevin Harwell -- AST-2021-002: Remote crash possible when negotiating T.38
    • -

Category: Resources/res_rtp_asterisk

ASTERISK-29205: res_rtp_asterisk: Asterisk crashes when making hold/unhold from webrtc client
Reported by: Edvin Vidmar
    -
  • [07eddbd56a] Sean Bright -- res_rtp_asterisk.c: Fix signed mismatch that leads to overflow
    • -

Commits Not Associated with an Issue

[Back to Top]

This is a list of all changes that went into this release that did not reference a JIRA issue.

- - -
RevisionAuthorSummary
6b5306ecc5Joshua C. Colpres_pjsip_pidf_digium_body_supplement: Support Sangoma user agent.

Diffstat Results

[Back to Top]

This is a summary of the changes to the source code that went into this release that was generated using the diffstat utility.

configs/samples/rtp.conf.sample                |   12 ++++++++++++
-doc/CHANGES-staging/srtp_replay_protection.txt |    9 +++++++++
-doc/UPGRADE-staging/srtp_replay_protection.txt |    9 +++++++++
-res/res_pjsip_pidf_digium_body_supplement.c    |    8 +++++---
-res/res_pjsip_session.c                        |    9 ++++++++-
-res/res_pjsip_t38.c                            |    9 +++++++++
-res/res_rtp_asterisk.c                         |   11 +++++++----
-7 files changed, 59 insertions(+), 8 deletions(-)

\ No newline at end of file diff --git a/asterisk-certified-16.8-cert6-summary.txt b/asterisk-certified-16.8-cert6-summary.txt deleted file mode 100644 index 040d280ba4..0000000000 --- a/asterisk-certified-16.8-cert6-summary.txt +++ /dev/null @@ -1,141 +0,0 @@ - Release Summary - - asterisk-certified/16.8-cert6 - - Date: 2021-02-18 - - - - ---------------------------------------------------------------------- - - Table of Contents - - 1. Summary - 2. Contributors - 3. Closed Issues - 4. Other Changes - 5. Diffstat - - ---------------------------------------------------------------------- - - Summary - - [Back to Top] - - This release has been made to address one or more security vulnerabilities - that have been identified. A security advisory document has been published - for each vulnerability that includes additional information. Users of - versions of Asterisk that are affected are strongly encouraged to review - the advisories and determine what action they should take to protect their - systems from these issues. - - Security Advisories: - - * AST-2021-002,AST-2021-003,AST-2021-004,AST-2021-005 - - The data in this summary reflects changes that have been made since the - previous release, asterisk-certified/16.8-cert5. - - ---------------------------------------------------------------------- - - Contributors - - [Back to Top] - - This table lists the people who have submitted code, those that have - tested patches, as well as those that reported issues on the issue tracker - that were resolved in this release. For coders, the number is how many of - their patches (of any size) were committed into this release. For testers, - the number is the number of times their name was listed as assisting with - testing a patch. Finally, for reporters, the number is the number of - issues that they reported that were affected by commits that went into - this release. - - Coders Testers Reporters - 2 Joshua C. Colp 1 Mauri de Souza Meneguzzo (3CPlus) - 1 Sean Bright 1 Gregory Massel - 1 Kevin Harwell 1 Alexander Traud - 1 Alexander Traud 1 Edvin Vidmar - 1 Alexander Traud - - ---------------------------------------------------------------------- - - Closed Issues - - [Back to Top] - - This is a list of all issues from the issue tracker that were closed by - changes that went into this release. - - Security - - Category: Resources/res_srtp - - ASTERISK-29260: sRTP Replay Protection ignored; even tears down long calls - Reported by: Alexander Traud - * [93468c531a] Alexander Traud -- rtp: Enable srtp replay protection - - Bug - - Category: Resources/res_pjsip - - ASTERISK-29196: res_pjsip: Segmentation fault - Reported by: Mauri de Souza Meneguzzo (3CPlus) - * [23e96e6e17] Joshua C. Colp -- pjsip: Make modify_local_offer2 - tolerate previous failed SDP. - - Category: Resources/res_pjsip_session - - ASTERISK-29203: res_pjsip_t38: Crash when changing state - Reported by: Gregory Massel - * [bb5b336f78] Kevin Harwell -- AST-2021-002: Remote crash possible when - negotiating T.38 - - Category: Resources/res_pjsip_t38 - - ASTERISK-29203: res_pjsip_t38: Crash when changing state - Reported by: Gregory Massel - * [bb5b336f78] Kevin Harwell -- AST-2021-002: Remote crash possible when - negotiating T.38 - - Category: Resources/res_rtp_asterisk - - ASTERISK-29205: res_rtp_asterisk: Asterisk crashes when making hold/unhold - from webrtc client - Reported by: Edvin Vidmar - * [07eddbd56a] Sean Bright -- res_rtp_asterisk.c: Fix signed mismatch - that leads to overflow - - ---------------------------------------------------------------------- - - Commits Not Associated with an Issue - - [Back to Top] - - This is a list of all changes that went into this release that did not - reference a JIRA issue. - - +------------------------------------------------------------------------+ - | Revision | Author | Summary | - |------------+-----------+-----------------------------------------------| - | 6b5306ecc5 | Joshua C. | res_pjsip_pidf_digium_body_supplement: | - | | Colp | Support Sangoma user agent. | - +------------------------------------------------------------------------+ - - ---------------------------------------------------------------------- - - Diffstat Results - - [Back to Top] - - This is a summary of the changes to the source code that went into this - release that was generated using the diffstat utility. - - configs/samples/rtp.conf.sample | 12 ++++++++++++ - doc/CHANGES-staging/srtp_replay_protection.txt | 9 +++++++++ - doc/UPGRADE-staging/srtp_replay_protection.txt | 9 +++++++++ - res/res_pjsip_pidf_digium_body_supplement.c | 8 +++++--- - res/res_pjsip_session.c | 9 ++++++++- - res/res_pjsip_t38.c | 9 +++++++++ - res/res_rtp_asterisk.c | 11 +++++++---- - 7 files changed, 59 insertions(+), 8 deletions(-) diff --git a/asterisk-certified-16.8-cert7-summary.html b/asterisk-certified-16.8-cert7-summary.html new file mode 100644 index 0000000000..d67f3128ff --- /dev/null +++ b/asterisk-certified-16.8-cert7-summary.html @@ -0,0 +1,25 @@ +Release Summary - asterisk-certified/16.8-cert7

Release Summary

asterisk-certified/16.8-cert7

Date: 2021-03-04

<asteriskteam@digium.com>

Table of Contents

    +
  1. Summary
    2. +
  2. Contributors
    3. +
  3. Closed Issues
    4. +
  4. Diffstat
    5. +

Summary

[Back to Top]

This release has been made to address one or more security vulnerabilities that have been identified. A security advisory document has been published for each vulnerability that includes additional information. Users of versions of Asterisk that are affected are strongly encouraged to review the advisories and determine what action they should take to protect their systems from these issues.

Security Advisories:

The data in this summary reflects changes that have been made since the previous release, asterisk-certified/16.8-cert6.

Contributors

[Back to Top]

This table lists the people who have submitted code, those that have tested patches, as well as those that reported issues on the issue tracker that were resolved in this release. For coders, the number is how many of their patches (of any size) were committed into this release. For testers, the number is the number of times their name was listed as assisting with testing a patch. Finally, for reporters, the number is the number of issues that they reported that were affected by commits that went into this release.

+ + +
CodersTestersReporters
2 Joshua C. Colp
2 Ben Ford
1 Benjamin Keith Ford
1 Gregory Massel
1 Alexei Gradinari
1 Stefan Ruf

Closed Issues

[Back to Top]

This is a list of all issues from the issue tracker that were closed by changes that went into this release.

Security

Category: Resources/res_pjsip_t38

ASTERISK-29305: ASTERISK-29203 / AST-2021-002 -- Another scenario is causing a crash
Reported by: Gregory Massel
    +
  • [b9fc07ca53] Ben Ford -- AST-2021-006 - res_pjsip_t38.c: Check for session_media on reinvite.
    • +

Bug

Category: Applications/app_confbridge

ASTERISK-29071: app_confbridge: Memory rises when jitterbuffer enabled and muting over AMI occurs
Reported by: Stefan Ruf
    +
  • [54f4be115f] Joshua C. Colp -- channel: Fix memory leak in suppress API.
    • +

Category: Core/Bridging

ASTERISK-29071: app_confbridge: Memory rises when jitterbuffer enabled and muting over AMI occurs
Reported by: Stefan Ruf
    +
  • [54f4be115f] Joshua C. Colp -- channel: Fix memory leak in suppress API.
    • +

Category: Resources/res_pjsip_session

ASTERISK-28871: res_pjsip_session: Unnecessary re-Invite on call answer
Reported by: Alexei Gradinari
    +
  • [df34b007d9] Joshua C. Colp -- bridge: Don't try to match audio formats.
    • +
ASTERISK-29303: pjsip: Re-invite occurs when it shouldn't
Reported by: Benjamin Keith Ford
    +
  • [b12fcaaaf0] Ben Ford -- res_pjsip_session.c: Check topology on re-invite.
    • +

Diffstat Results

[Back to Top]

This is a summary of the changes to the source code that went into this release that was generated using the diffstat utility.

bridges/bridge_native_rtp.c |    4 ++--
+bridges/bridge_simple.c     |    4 ++--
+main/channel.c              |    1 +
+res/res_pjsip_session.c     |   16 +++-------------
+4 files changed, 8 insertions(+), 17 deletions(-)

\ No newline at end of file diff --git a/asterisk-certified-16.8-cert7-summary.txt b/asterisk-certified-16.8-cert7-summary.txt new file mode 100644 index 0000000000..afcd0a2aa0 --- /dev/null +++ b/asterisk-certified-16.8-cert7-summary.txt @@ -0,0 +1,120 @@ + Release Summary + + asterisk-certified/16.8-cert7 + + Date: 2021-03-04 + + + + ---------------------------------------------------------------------- + + Table of Contents + + 1. Summary + 2. Contributors + 3. Closed Issues + 4. Diffstat + + ---------------------------------------------------------------------- + + Summary + + [Back to Top] + + This release has been made to address one or more security vulnerabilities + that have been identified. A security advisory document has been published + for each vulnerability that includes additional information. Users of + versions of Asterisk that are affected are strongly encouraged to review + the advisories and determine what action they should take to protect their + systems from these issues. + + Security Advisories: + + * AST-2021-006 + + The data in this summary reflects changes that have been made since the + previous release, asterisk-certified/16.8-cert6. + + ---------------------------------------------------------------------- + + Contributors + + [Back to Top] + + This table lists the people who have submitted code, those that have + tested patches, as well as those that reported issues on the issue tracker + that were resolved in this release. For coders, the number is how many of + their patches (of any size) were committed into this release. For testers, + the number is the number of times their name was listed as assisting with + testing a patch. Finally, for reporters, the number is the number of + issues that they reported that were affected by commits that went into + this release. + + Coders Testers Reporters + 2 Joshua C. Colp 1 Benjamin Keith Ford + 2 Ben Ford 1 Gregory Massel + 1 Alexei Gradinari + 1 Stefan Ruf + + ---------------------------------------------------------------------- + + Closed Issues + + [Back to Top] + + This is a list of all issues from the issue tracker that were closed by + changes that went into this release. + + Security + + Category: Resources/res_pjsip_t38 + + ASTERISK-29305: ASTERISK-29203 / AST-2021-002 -- Another scenario is + causing a crash + Reported by: Gregory Massel + * [b9fc07ca53] Ben Ford -- AST-2021-006 - res_pjsip_t38.c: Check for + session_media on reinvite. + + Bug + + Category: Applications/app_confbridge + + ASTERISK-29071: app_confbridge: Memory rises when jitterbuffer enabled and + muting over AMI occurs + Reported by: Stefan Ruf + * [54f4be115f] Joshua C. Colp -- channel: Fix memory leak in suppress + API. + + Category: Core/Bridging + + ASTERISK-29071: app_confbridge: Memory rises when jitterbuffer enabled and + muting over AMI occurs + Reported by: Stefan Ruf + * [54f4be115f] Joshua C. Colp -- channel: Fix memory leak in suppress + API. + + Category: Resources/res_pjsip_session + + ASTERISK-28871: res_pjsip_session: Unnecessary re-Invite on call answer + Reported by: Alexei Gradinari + * [df34b007d9] Joshua C. Colp -- bridge: Don't try to match audio + formats. + ASTERISK-29303: pjsip: Re-invite occurs when it shouldn't + Reported by: Benjamin Keith Ford + * [b12fcaaaf0] Ben Ford -- res_pjsip_session.c: Check topology on + re-invite. + + ---------------------------------------------------------------------- + + Diffstat Results + + [Back to Top] + + This is a summary of the changes to the source code that went into this + release that was generated using the diffstat utility. + + bridges/bridge_native_rtp.c | 4 ++-- + bridges/bridge_simple.c | 4 ++-- + main/channel.c | 1 + + res/res_pjsip_session.c | 16 +++------------- + 4 files changed, 8 insertions(+), 17 deletions(-)