Posts Tagged sip
Asterisk 10.0.0 Is Released
Asterisk The Open Source PBX & Telephony Platform
The Asterisk Development Team is proud to announce the release of Asterisk 10.0.0. This release is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/
Asterisk 10 is the next major release series of Asterisk. It will be a Standard support release, similar to Asterisk 1.6.2. For more information about support time lines for Asterisk releases, see the Asterisk versions page:
https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions
With the release of the Asterisk 10 branch, the preceding ’1.’ has been removed from the version number per the blog post available at
http://blogs.digium.com/2011/07/21/the-evolution-of-asterisk-or-how-we-a…
The release of Asterisk 10 would not have been possible without the support and contributions of the community.
You can find an overview of the work involved with the 10.0.0 release in the summary:
http://svn.asterisk.org/svn/asterisk/tags/10.0.0/asterisk-10.0.0-summary…
A short list of available features includes:
- T.38 gateway functionality has been added to res_fax.
- Protocol independent out-of-call messaging support. Text messages not associated with an active call can now be routed through the Asterisk dialplan. SIP and XMPP are supported so far.
- New highly optimized and customizable ConfBridge application capable of mixing audio at sample rates ranging from 8kHz-192kHz
- Addition of video_mode option in confbridge.conf to provide basic video conferencing in the ConfBridge() dialplan application.
- Support for defining hints has been added to pbx_lua.
- Replacement of Berkeley DB with SQLite for the Asterisk Database (AstDB).
- Much, much more!
A full list of new features can be found in the CHANGES file.
http://svn.asterisk.org/svn/asterisk/branches/10/CHANGES
Also, when upgrading a system between major versions, it is imperative that you read and understand the contents of the UPGRADE.txt file, which is located at:
http://svn.asterisk.org/svn/asterisk/branches/10/UPGRADE.txt
Thank you for your continued support of Asterisk!
Asterisk 1.8.7.1 now available (Security Release)
Posted by admin in asterisk, Asterisk Security Releases, Security Advisories on October 17, 2011
Asterisk The Open Source PBX & Telephony Platform
The Asterisk Development Team has announced a security release for Asterisk 1.8.
The available security release is released as version 1.8.7.1.
This release is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/releases
The release of Asterisk 1.8.7.1 resolves an issue with SIP URI parsing which can lead to a remotely exploitable crash:
Remote Crash Vulnerability in SIP channel driver (AST-2011-012)
The issue and resolution is described in the AST-2011-012 security advisory.
For more information about the details of this vulnerability, please read the security advisory AST-2011-012, which was released at the same time as this announcement.
For a full list of changes in the current release, please see the ChangeLog:
Security advisory AST-2011-012 is available at:
Thank you for your continued support of Asterisk!
Asterisk 1.8.8.0-rc1 Now Available
Posted by admin in asterisk, Release Candidates, sip on October 6, 2011
Asterisk The Open Source PBX & Telephony Platform
The Asterisk Development Team announces the first release candidate of Asterisk 1.8.8.0. This release candidate is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/
The release of Asterisk 1.8.8.0-rc1 resolves several issues reported by the community and would have not been possible without your participation.
Thank you!
The following is a sample of the issues resolved in this release candidate:
- Updated SIP 484 handling; added Incomplete control frame When a SIP phone uses the dial application and receives a 484 Address
Incomplete response, if overlapped dialing is enabled for SIP, then the 484 Address Incomplete is forwarded back to the SIP phone and the HANGUPCAUSE channel variable is set to 28. Previously, the Incomplete application dialplan logic was automatically triggered; now, explicit dialplan usage of the application is required.
(Closes ASTERISK-17288. Reported by: Mikael Carlsson Tested by: Matthew Jordan Review: https://reviewboard.asterisk.org/r/1416/) - Prevent IAX2 from getting IPv6 addresses via DNS IAX2 does not support IPv6 and getting such addresses from DNS can cause error messages on the remote end involving bad IPv4 address casts in the presence of IPv6/IPv4 tunnels.
(Closes issue ASTERISK-18090. Patched by Kinsey Moore) - Fix bad RTP media bridges in directmedia calls on peers separated by multiple Asterisk nodes.
(Closes issue ASTERISK-18340. Reported by: Thomas Arimont. Closes issue ASTERISK-17725. Reported by: kwk. Tested by: twilson, jrose) - Fix crashes in ast_rtcp_write()
(Closes issue ASTERISK-18570)
Related issues that look like they are the same problem:
(Issue ASTERISK-17560, ASTERISK-15406, ASTERISK-15257, ASTERISK-13334, ASTERISK-9977, ASTERISK-9716)
Review: https://reviewboard.asterisk.org/r/1444/
Patched by: Russell Bryant - Fix for incorrect voicemail duration in external notifications. This patch fixes an issue where the voicemail duration was being reported with a duration significantly less than the actual sound file duration.
(Closes ASTERISK-16981. Reported by: Mary Ciuciu, Byron Clark, Brad House, Karsten Wemheuer, KevinH Tested by: Matt Jordan
Review: https://reviewboard.asterisk.org/r/1443) - Prevent segfault if call arrives before Asterisk is fully booted.
(Patched by alecdavis. https://reviewboard.asterisk.org/r/1407/)
For a full list of changes in this release candidate, please see the ChangeLog:
Thank you for your continued support of Asterisk!
Asterisk 10.0.0-beta2 Now Available
Asterisk The Open Source PBX & Telephony Platform
The Asterisk Development Team is pleased to announce the second beta release of Asterisk 10.0.0. This release is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/
With the release of the Asterisk 10 branch, the preceding ’1.’ has been removed from the version number per the blog post available at
http://blogs.digium.com/2011/07/21/the-evolution-of-asterisk-or-how-we-a…
All interested users of Asterisk are encouraged to participate in the Asterisk 10 testing process. Please report any issues found to the issue tracker, https://issues.asterisk.org/jira. It is also very useful to see successful test reports. Please post those to the asterisk-dev mailing list.
All Asterisk users are invited to participate in the #asterisk-testing channel on IRC to work together in testing the many parts of Asterisk.
Asterisk 10 is the next major release series of Asterisk. It will be a Standard support release, similar to Asterisk 1.6.2. For more information about support time lines for Asterisk releases, see the Asterisk
versions page: https://wiki.asterisk.org/wiki/display/AST/Asterisk+Versions
A short list of features includes:
- T.38 gateway functionality has been added to res_fax.
- Protocol independent out-of-call messaging support. Text messages not associated with an active call can now be routed through the Asterisk dialplan. SIP and XMPP are supported so far.
- New highly optimized and customizable ConfBridge application capable of mixing audio at sample rates ranging from 8kHz-192kHz
- Addition of video_mode option in confbridge.conf to provide basic video conferencing in the ConfBridge() dialplan application.
- Support for defining hints has been added to pbx_lua.
- Replacement of Berkeley DB with SQLite for the Asterisk Database (AstDB).
- Much, much more!
A full list of new features can be found in the CHANGES file.
For a full list of changes in the current release, please see the ChangeLog:
Thank you for your continued support of Asterisk!
Asterisk 1.8.5.0 Now Available
Asterisk The Open Source PBX & Telephony Platform
The Asterisk Development Team announces the release of Asterisk 1.8.5.0. This release is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/
The release of Asterisk 1.8.5.0 resolves several issues reported by the community and would have not been possible without your participation.
Thank you!
The following is a sample of the issues resolved in this release:
- Fix Deadlock with attended transfer of SIP call
(Closes issue #18837. Reported, patched by alecdavis. Tested by Irontec, ZX81, cmaj) - Fixes thread blocking issue in the sip TCP/TLS implementation.
(Closes issue #18497. Reported by vois. Patched by dvossel. Tested by vois, rossbeer, kowalma, Freddi_Fonet) - Be more tolerant of what URI we accept for call completion PUBLISH requests.
(Closes issue #18946. Reported by GeorgeKonopacki. Patched by mmichelson) - Fix a nasty chanspy bug which was causing a channel leak every time a spied on channel made a call.
(Closes issue #18742. Reported by jkister. Tested by jcovert, jrose) - This patch fixes a bug with MeetMe behavior where the ‘P’ option for always prompting for a pin is ignored for the first caller.
(Closes issue #18070. Reported by mav3rick. Patched by bbryant) - Fix issue where Asterisk does not hangup a channel after endpoint hangs up. If the call that the dialplan started an AGI script for is hungup while the AGI script is in the middle of a command then the AGI script is not notified of the hangup.
(Closes issue #17954, #18492. Reported by mn3250, devmod. Patched by rmudgett) - Resolve issue where leaving a voicemail, the MWI message is never sent. The same thing happens when checking a voicemail and marking it as read.
(Closes issue ASTERISK-18002. Reported by Leif Madsen. Resolved by Richard Mudgett) - Resolve issue where wait for leader with Music On Hold allows crosstalk between participants. Parenthesis in the wrong position. Regression from issue #14365 when expanding conference flags to use 64 bits.
(Closes issue #18418. Reported by MrHanMan. Patched by rmudgett)
For a full list of changes in this release, please see the ChangeLog:
Thank you for your continued support of Asterisk!
Asterisk 1.8.5-rc1 Now Available
Posted by admin in asterisk, Release Candidates, sip on June 29, 2011
Asterisk The Open Source PBX & Telephony Platform
The Asterisk Development Team announces the first release candidate of Asterisk 1.8.5. This release candidate is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/
The release of Asterisk 1.8.5-rc1 resolves several issues reported by the community and would have not been possible without your participation.
Thank you!
The following is a sample of the issues resolved in this release candidate:
- Fix Deadlock with attended transfer of SIP call
(Closes issue #18837. Reported, patched by alecdavis. Tested by Irontec, ZX81, cmaj) - Fixes thread blocking issue in the sip TCP/TLS implementation.
(Closes issue #18497. Reported by vois. Patched by dvossel. Tested by vois, rossbeer, kowalma, Freddi_Fonet) - Be more tolerant of what URI we accept for call completion PUBLISH requests.
(Closes issue #18946. Reported by GeorgeKonopacki. Patched by mmichelson) - Fix a nasty chanspy bug which was causing a channel leak every time a spied on channel made a call.
(Closes issue #18742. Reported by jkister. Tested by jcovert, jrose) - This patch fixes a bug with MeetMe behavior where the ‘P’ option for always prompting for a pin is ignored for the first caller.
(Closes issue #18070. Reported by mav3rick. Patched by bbryant) - Fix issue where Asterisk does not hangup a channel after endpoint hangs up. If the call that the dialplan started an AGI script for is hungup while the AGI script is in the middle of a command then the AGI script is not notified of the hangup.
(Closes issue #17954, #18492. Reported by mn3250, devmod. Patched by rmudgett) - Resolve issue where leaving a voicemail, the MWI message is never sent. The same thing happens when checking a voicemail and marking it as read.
(Closes issue ASTERISK-18002. Reported by Leif Madsen. Resolved by Richard Mudgett) - Resolve issue where wait for leader with Music On Hold allows crosstalk between participants. Parenthesis in the wrong position. Regression from issue #14365 when expanding conference flags to use 64 bits.
(Closes issue #18418. Reported by MrHanMan. Patched by rmudgett) - Fix timerfd locking issue.
(Closes ASTERISK-17867, ASTERISK-17415. Patched by kobaz)
For a full list of changes in this release candidate, please see the ChangeLog:
Thank you for your continued support of Asterisk!
Asterisk 1.4.41.2, Asterisk 1.6.2.18.2, Asterisk 1.8.4.4 Now Available (Security Release)
Posted by admin in asterisk, Asterisk Security Releases, Security Advisories, sip on June 28, 2011
Asterisk The Open Source PBX & Telephony Platform
The Asterisk Development Team has announced the release of Asterisk versions 1.4.41.2, 1.6.2.18.2, and 1.8.4.4, which are security releases.
These releases are available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/releases
The release of Asterisk 1.4.41.2, 1.6.2.18.2, and 1.8.4.4 resolves the following issue:
- AST-2011-011: Asterisk may respond differently to SIP requests from an invalid SIP user than it does to a user configured on the system, even when the alwaysauthreject option is set in the configuration. This can leak information about what SIP users are valid on the Asterisk system.
For more information about the details of this vulnerability, please read the security advisory AST-2011-011, which was released at the same time as this announcement.
For a full list of changes in the current releases, please see the ChangeLog:
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-…
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-…
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-…
Security advisory AST-2011-011 is available at:
Thank you for your continued support of Asterisk!
Asterisk Security Advisories – AST-2011-011: Possible enumeration of SIP users due to differing authentication responses
Posted by admin in asterisk, Asterisk Security Advisories, Security Advisories, sip on June 28, 2011
Asterisk Project Security Advisory - AST-2011-011
| Product | Asterisk |
| Summary | Possible enumeration of SIP users due to differing authentication responses |
| Nature of Advisory | Unauthorized data disclosure |
| Susceptibility | Remote unauthenticated sessions |
| Severity | Moderate |
| Exploits Known | No |
| Reported On | June 11, 2011 |
| Reported By | |
| Posted On | June 28, 2011 |
| Last Updated On | June 28, 2011 |
| Advisory Contact | Terry Wilson <twilson@digium.com> |
| CVE Name | CVE-2011-2536 |
Asterisk 1.8.4-rc2 Now Available
Posted by admin in asterisk, Release Candidates, sip on February 28, 2011
Asterisk The Open Source PBX & Telephony Platform
The Asterisk Development Team has announced the second release candidate of Asterisk 1.8.4. This release candidate is available for immediate download at
http://downloads.asterisk.org/pub/telephony/asterisk/
The release of Asterisk 1.8.4-rc2 resolves several issues reported by the community and would have not been possible without your participation.
Thank you!
The following is a sample of the issues resolved in this release candidate:
- Resolution of several DTMF based attended transfer issues.
(Closes issue #17999, #17096, #18395, #17273. Reported by iskatel, gelo, shihchuan, grecco. Patched by rmudgett)
NOTE: Be sure to read the ChangeLog for more information about these changes. - Resolve deadlocks related to device states in chan_sip
(Closes issue #18310. Reported, patched by one47. Patched by jpeeler) - Resolve an issue with the Asterisk manager interface leaking memory when disabled.
(Reported internally by kmorgan. Patched by russellb) - Support greetingsfolder as documented in voicemail.conf.sample.
(Closes issue #17870. Reported by edhorton. Patched by seanbright) - Fix channel redirect out of MeetMe() and other issues with channel softhangup
(Closes issue #18585. Reported by oej. Tested by oej, wedhorn, russellb. Patched by russellb) - Fix voicemail sequencing for file based storage.
(Closes issue #18498, #18486. Reported by JJCinAZ, bluefox. Patched by jpeeler) - Set hangup cause in local_hangup so the proper return code of 486 instead of 503 when using Local channels when the far sides returns a busy. Also affects CCSS in Asterisk 1.8+.
(Patched by twilson) - Fix issues with verbose messages not being output to the console.
(Closes issue #18580. Reported by pabelanger. Patched by qwell)
Asterisk 1.8.4-rc1 was not released due to a blocking issue found prior to release. An additional fix was merged into Asterisk 1.8.4-rc2:
- Fix Deadlock with attended transfer of SIP call
(Closes issue #18837. Reported, patched by alecdavis. Tested by alecdavid, Irontec, ZX81, cmaj)
For a full list of changes in this release candidate, please see the ChangeLog:
Thank you for your continued support of Asterisk!
Asterisk 1.4.38 Now Available
Asterisk The Open Source PBX & Telephony Platform
The Asterisk Development Team has announced the release of Asterisk 1.4.38. This release is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/
The release of Asterisk 1.4.38 resolves several issues reported by the community and would have not been possible without your participation.
Thank you!
The following is a sample of the issues resolved in this release:
- Add ability for Asterisk to try both the encoded and unencoded subscription URI for a match in hints.
(Closes issue #17785. Reported, tested by ramonpeek. Patched by tilghman) - Set the caller id on CDRs when it is set on the parent channel.
(Closes issue #17569. Reported, patched by tbelder) - Ensure user portion of SIP URI matches dialplan when using encoded characters
(Closes issue #17892. Reported by wdoekes. Patched by jpeeler) - Fix a crash in res_jabber by ensuring that we don’t alter memory after it’s freed.
(Closes issue #17387. Reported, tested by jmls. Patched by tilghman) - Fix problem with qualify option packets for realtime peers never stopping. The option packets not only never stopped, but if a realtime peer was not in the peer list multiple options dialogs could accumulate over time.
(Closes issue #16382. Reported by lftsy. Tested by zerohalo. Patched by jpeeler) - Multiple fixes related to Local channels.
For a full list of changes in this release, please see the ChangeLog:
http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.4.38
Thank you for your continued support of Asterisk!
