This release has been made to address one or more security vulnerabilities that have been identified. A security advisory document has been published for each vulnerability that includes additional information. Users of versions of Asterisk that are affected are strongly encouraged to review the advisories and determine what action they should take to protect their systems from these issues.
Security Advisories:
The data in this summary reflects changes that have been made since the previous release, asterisk-certified/13.1-cert2.
This table lists the people who have submitted code, those that have tested patches, as well as those that reported issues on the issue tracker that were resolved in this release. For coders, the number is how many of their patches (of any size) were committed into this release. For testers, the number is the number of times their name was listed as assisting with testing a patch. Finally, for reporters, the number is the number of issues that they reported that were affected by commits that went into this release.
Coders | Testers | Reporters |
---|---|---|
48 Mark Michelson 47 Richard Mudgett 38 Joshua Colp 17 Kevin Harwell 13 Matt Jordan 8 Jonathan Rose 5 gtjoseph 3 Ashley Sanders 3 Kevin Harwell 2 Corey Farrell 1 Alec Davis 1 Scott Griepentrog 1 yaron nahum (License 6676) 1 Maciej Szmigiero 1 Juergen Spies (License 6698) 1 Steve Davies | 3 gtjoseph 1 Juergen Spies | 25 Mark Michelson 22 Matt Jordan 22 Mark Michelson 21 Joshua Colp 18 Richard Mudgett 10 Kevin Harwell 9 John Hardin 6 Jonathan Rose 5 Chet Stevens 5 Richard Mudgett 4 Jonathan Rose 4 Michael Keuter 4 Chet Stevens 3 Zane Conkle 3 Corey Farrell 3 Joshua Colp 3 Zane Conkle 2 John Bigelow 2 warren smith 2 Carl Fortin 2 Carl Fortin 2 Sean Pimental 1 David Justl 1 Walter Doekes 1 Denis Alberto Martinez 1 Etienne Lessard 1 Alexandr Gordeev 1 David Justl 1 yaron nahum 1 warren smith 1 Ray Crumrine 1 Scott Griepentrog 1 viniciusfontes 1 Ashley Sanders 1 Krzysztof Trempala 1 Walter Doekes 1 Ashley Sanders 1 Maciej Szmigiero 1 Ilya Trikoz 1 Hiroaki Komatsu 1 snuffy 1 David Brillert 1 Alexander Traud 1 Kevin Harwell 1 Alex A. Welzl 1 Krzysztof Trempala 1 Badalian Vyacheslav 1 Artem Volodin 1 Etienne Lessard 1 Artem Volodin 1 Alec Davis 1 Brad Latus 1 Juergen Spies 1 Ray Crumrine 1 Ilya Trikoz 1 Dmitriy Serov 1 Alexander Traud 1 John Bigelow 1 yaron nahum 1 Aleksandr Gordeev 1 Torrey Searle 1 David Brillert 1 Juergen Spies 1 Peter Katzmann |
This is a list of all issues from the issue tracker that were closed by changes that went into this release.
This is a list of all changes that went into this release that did not reference a JIRA issue.
Revision | Author | Summary |
---|---|---|
2142c74a02 | Kevin Harwell | .version: Update for certified/13.1-cert3 |
07c95d33bd | Kevin Harwell | .lastclean: Update for certified/13.1-cert3 |
ce314be09d | Kevin Harwell | realtime: Add database scripts for certified/13.1-cert3 |
22eb1b48c0 | Mark Michelson | res_pjsip_pubsub: Prevent crash from AMI command on freed subscription. |
f63fb0e337 | Joshua Colp | test_time: Provide a timeout when waiting. |
c0a7df1021 | Mark Michelson | Taskprocessors: Increase high-water mark |
2fc3267677 | Mark Michelson | res_pjsip distributor: Don't send 503 response to responses. |
287cab1a53 | Mark Michelson | res_pjsip: Deny requests when threadpool queue is backed up. |
6eda60936a | Kevin Harwell | alembic: Bad down revision in add_default_from_user script |
b95101aab0 | Mark Michelson | format_cap: Detect vector allocation failures. |
dd4d4e40e5 | Mark Michelson | res_pjsip_pubsub: Prevent sending NOTIFY on destroyed dialog. |
bda0a24206 | Mark Michelson | res_pjsip_pubsub: Ensure dialog lock balance. |
7a22fc27fb | Mark Michelson | res_pjsip_pubsub: Prevent crashes on final NOTIFY. |
7fc9a998b1 | Mark Michelson | res_pjsip_pubsub: Remove serializer when sending final NOTIFY. |
7a47ab77c1 | Mark Michelson | res_pjsip_pubsub: Fix crash on destruction of empty subscription tree. |
8def38f6a2 | Mark Michelson | res_pjsip_pubsub: Solidify lifetime and ownership of objects. |
16afb39aec | Mark Michelson | res_pjsip_pubsub: Set the endpoint on SUBSCRIBE dialogs. |
78e4783572 | Richard Mudgett | Add missing failure checks to ast_str_set_va() callers. |
b5cfcfc427 | Matt Jordan | contrib/scripts/autosupport: Update for Asterisk 13 |
47a9452780 | Richard Mudgett | config.c: Fix off-nominal memory leak. |
728a2b7013 | Richard Mudgett | config.c: Fix potential memory corruption after [section](+). |
9ec52447bd | Richard Mudgett | res_sorcery_memory_cache.c: Shutdown in a less crash potential order. |
110927bacc | Richard Mudgett | res_sorcery_memory_cache.c: Misc tweaks. |
14ac763ab3 | Richard Mudgett | res_sorcery_memory_cache.c: Made use OBJ_SEARCH_MASK. |
20702e0cf2 | Mark Michelson | res_pjsip_pubsub: Eliminate race during initial NOTIFY. |
3ef74244a4 | Mark Michelson | scheduler: Use queue for allocating sched IDs. |
a1e1d8e815 | Mark Michelson | res_pjsip: Fix contact refleak on stateful responses. |
4083e543fd | Joshua Colp | res_pjsip_pubsub: On recreated notify fail deleted sub_tree is referenced |
f049ad951b | Mark Michelson | res_pjsip_sdp_rtp: Restore removed NULL check. |
7089472637 | Joshua Colp | res_http_websocket: When shutting down a session don't close closed socket |
0fcc530dc7 | Joshua Colp | sorcery: Fix cache creation callback. |
c8d53f2372 | Mark Michelson | res_sorcery_memory_cache: Remove ASTERISK_REGISTER_FILE() macro. |
a72cf6ce81 | Joshua Colp | res_sorcery_memory_cache: Execute stale unit test last. |
49a37f22e1 | Jonathan Rose | app: Add functions to swap vm function table |
f58c0acfa2 | gtjoseph | res/res_corosync: Always decline module load, instead of failing |
ca2174bb23 | Matt Jordan | .version: Update for certified/13.1-cert3-rc1 |
2ef2c12fae | Matt Jordan | .lastclean: Update for certified/13.1-cert3-rc1 |
5032390639 | Matt Jordan | realtime: Add database scripts for certified/13.1-cert3-rc1 |
08a4cf3237 | Mark Michelson | res_pjsip_outbound_authenticator_digest: Add missing outbound authenticator callback. |
cb67aae596 | gtjoseph | More .gitignore updates |
70fab74baf | gtjoseph | .gitignore updates for master/13 |
7d64479748 | Matt Jordan | git migration: Remove support for file versions |
9237e8b11e | Corey Farrell | main/editline: Add .gitignore. |
630dbcb8b4 | Matt Jordan | .gitignore: Ignore tarballs (*.gz) |
e4892f9aa4 | gtjoseph | Add .gitignore and .gitreview files |
45f09898e9 | Mark Michelson | Do not queue message requests that we do not respond to. |
b6fff2719d | Mark Michelson | core: avoid possible asterisk -r crash from long id |
8ae3670781 | Ashley Sanders | stasis: set a channel variable on websocket disconnect error |
259227eb1a | Ashley Sanders | stasis: set a channel variable on websocket disconnect error |
66b8c7cab4 | Richard Mudgett | res_pjsip_registrar_expire.c: Cleanup scheduler leaks on unload/shutdown. |
fb7062afca | Richard Mudgett | Audit ast_pjsip_rdata_get_endpoint() usage for ref leaks. |
cf9799845f | Richard Mudgett | res_pjsip_sdp_rtp,sorcery: Fix invalid access and memory leak respectively. |
90fc65da62 | Richard Mudgett | Audit ast_sockaddr_resolve() usage for memory leaks. |
cd4e18c4cc | Richard Mudgett | Multiple revisions 431583,433005 |
52366a423c | Matt Jordan | translate: Prevent invalid memory accesses on fast shutdown |
69dc8f9ec2 | Kevin Harwell | pjsip_options: Fix continued qualifies after endpoint/aor deletion |
2125e1b2de | Mark Michelson | Add Asterisk 13 revision 431420 that fixes disabling 100rel option on PJSIP endpoints. |
This is a summary of the changes to the source code that went into this release that was generated using the diffstat utility.
b/.gitignore | 31 b/.gitreview | 4 b/.version | 2 b/CHANGES | 47 b/ChangeLog | 831 --- b/UPGRADE.txt | 31 b/addons/.gitignore | 1 b/agi/.gitignore | 3 b/apps/app_chanspy.c | 3 b/apps/app_confbridge.c | 24 b/apps/app_dial.c | 252 b/apps/app_directory.c | 48 b/apps/app_externalivr.c | 2 b/apps/app_followme.c | 13 b/apps/app_page.c | 28 b/apps/app_queue.c | 175 b/apps/app_record.c | 3 b/apps/app_stasis.c | 42 b/apps/app_voicemail.c | 5 b/apps/confbridge/conf_config_parser.c | 4 b/apps/confbridge/include/confbridge.h | 2 b/bridges/bridge_native_rtp.c | 28 b/build_tools/.gitignore | 1 b/build_tools/make_version | 7 b/channels/chan_dahdi.c | 59 b/channels/chan_iax2.c | 21 b/channels/chan_pjsip.c | 49 b/channels/chan_sip.c | 65 b/channels/chan_skinny.c | 67 b/channels/sig_pri.c | 25 b/channels/sig_pri.h | 2 b/channels/sip/config_parser.c | 9 b/channels/sip/include/security_events.h | 3 b/channels/sip/security_events.c | 5 b/configs/samples/chan_dahdi.conf.sample | 14 b/configs/samples/confbridge.conf.sample | 6 b/configs/samples/http.conf.sample | 20 b/configs/samples/pjsip.conf.sample | 18 b/contrib/ast-db-manage/config/versions/154177371065_add_default_from_user.py | 22 b/contrib/ast-db-manage/config/versions/28ce1e718f05_add_fatal_response_interval.py | 22 b/contrib/ast-db-manage/config/versions/45e3f47c6c44_add_pjsip_endpoint_identifier_order.py | 21 b/contrib/ast-db-manage/config/versions/498357a710ae_add_rtp_keepalive.py | 22 b/contrib/ast-db-manage/config/versions/5a6ccc758633_add_pjsip_timeout_options.py | 24 b/contrib/realtime/mssql/mssql_cdr.sql | 42 b/contrib/realtime/mssql/mssql_config.sql | 1034 ++++ b/contrib/realtime/mssql/mssql_voicemail.sql | 48 b/contrib/realtime/mysql/mysql_config.sql | 32 b/contrib/realtime/oracle/oracle_config.sql | 36 b/contrib/realtime/postgresql/postgresql_config.sql | 24 b/contrib/realtime/sqlserver/mssql_config.sql | 12 b/contrib/scripts/autosupport | 95 b/doc/.gitignore | 1 b/doc/appdocsxml.xslt | 6 b/funcs/func_channel.c | 25 b/include/asterisk.h | 64 b/include/asterisk/.gitignore | 3 b/include/asterisk/app.h | 16 b/include/asterisk/bridge.h | 12 b/include/asterisk/channel.h | 19 b/include/asterisk/features_config.h | 15 b/include/asterisk/global_datastores.h | 6 b/include/asterisk/max_forwards.h | 78 b/include/asterisk/res_pjsip.h | 139 b/include/asterisk/res_pjsip_presence_xml.h | 9 b/include/asterisk/res_pjsip_pubsub.h | 19 b/include/asterisk/res_pjsip_session.h | 10 b/include/asterisk/rtp_engine.h | 32 b/include/asterisk/sorcery.h | 9 b/include/asterisk/strings.h | 54 b/include/asterisk/taskprocessor.h | 8 b/include/asterisk/tcptls.h | 10 b/include/asterisk/threadpool.h | 22 b/include/asterisk/threadstorage.h | 43 b/main/.gitignore | 3 b/main/aoc.c | 2 b/main/app.c | 61 b/main/asterisk.c | 262 - b/main/astfd.c | 2 b/main/astmm.c | 2 b/main/astobj2.c | 2 b/main/astobj2_container.c | 2 b/main/audiohook.c | 4 b/main/bridge.c | 26 b/main/bridge_basic.c | 203 b/main/bridge_channel.c | 31 b/main/ccss.c | 6 b/main/cel.c | 28 b/main/channel.c | 48 b/main/cli.c | 2 b/main/codec.c | 2 b/main/config.c | 47 b/main/config_options.c | 29 b/main/core_local.c | 13 b/main/core_unreal.c | 12 b/main/data.c | 2 b/main/dial.c | 47 b/main/dnsmgr.c | 2 b/main/editline/.gitignore | 13 b/main/features.c | 30 b/main/features_config.c | 15 b/main/file.c | 2 b/main/format.c | 2 b/main/format_cache.c | 2 b/main/format_cap.c | 29 b/main/global_datastores.c | 56 b/main/http.c | 14 b/main/image.c | 2 b/main/indications.c | 2 b/main/manager.c | 24 b/main/manager_bridges.c | 6 b/main/manager_channels.c | 41 b/main/manager_endpoints.c | 2 b/main/manager_mwi.c | 2 b/main/manager_system.c | 2 b/main/max_forwards.c | 165 b/main/message.c | 10 b/main/netsock2.c | 4 b/main/pbx.c | 467 + b/main/pickup.c | 2 b/main/presencestate.c | 15 b/main/rtp_engine.c | 26 b/main/sched.c | 150 b/main/sorcery.c | 25 b/main/sounds_index.c | 2 b/main/stasis.c | 10 b/main/stasis_channels.c | 68 b/main/stdtime/localtime.c | 5 b/main/stun.c | 2 b/main/taskprocessor.c | 32 b/main/tcptls.c | 30 b/main/threadpool.c | 81 b/main/threadstorage.c | 2 b/main/timing.c | 2 b/main/translate.c | 4 b/main/udptl.c | 17 b/main/utils.c | 134 b/main/xmldoc.c | 10 b/menuselect/.gitignore | 7 b/pbx/pbx_dundi.c | 1 b/res/ael/.gitignore | 1 b/res/ari/ari_websockets.c | 14 b/res/ari/resource_channels.c | 10 b/res/parking/parking_applications.c | 73 b/res/res_corosync.c | 14 b/res/res_http_websocket.c | 45 b/res/res_pjsip.c | 487 + b/res/res_pjsip/config_global.c | 41 b/res/res_pjsip/config_system.c | 2 b/res/res_pjsip/location.c | 35 b/res/res_pjsip/pjsip_configuration.c | 57 b/res/res_pjsip/pjsip_distributor.c | 140 b/res/res_pjsip/pjsip_options.c | 38 b/res/res_pjsip/presence_xml.c | 39 b/res/res_pjsip_acl.c | 2 b/res/res_pjsip_caller_id.c | 12 b/res/res_pjsip_dialog_info_body_generator.c | 9 b/res/res_pjsip_diversion.c | 5 b/res/res_pjsip_dlg_options.c | 107 b/res/res_pjsip_dtmf_info.c | 8 b/res/res_pjsip_endpoint_identifier_anonymous.c | 2 b/res/res_pjsip_endpoint_identifier_ip.c | 2 b/res/res_pjsip_endpoint_identifier_user.c | 2 b/res/res_pjsip_exten_state.c | 37 b/res/res_pjsip_messaging.c | 54 b/res/res_pjsip_multihomed.c | 74 b/res/res_pjsip_mwi.c | 263 - b/res/res_pjsip_nat.c | 97 b/res/res_pjsip_outbound_authenticator_digest.c | 15 b/res/res_pjsip_outbound_registration.c | 151 b/res/res_pjsip_pidf_body_generator.c | 11 b/res/res_pjsip_pidf_digium_body_supplement.c | 2 b/res/res_pjsip_pubsub.c | 400 + b/res/res_pjsip_pubsub.exports.in | 2 b/res/res_pjsip_refer.c | 62 b/res/res_pjsip_registrar.c | 9 b/res/res_pjsip_registrar_expire.c | 64 b/res/res_pjsip_sdp_rtp.c | 155 b/res/res_pjsip_send_to_voicemail.c | 10 b/res/res_pjsip_session.c | 603 +- b/res/res_pjsip_t38.c | 86 b/res/res_pjsip_xpidf_body_generator.c | 9 b/res/res_rtp_asterisk.c | 17 b/res/res_sorcery_memory_cache.c | 2584 ++++++++++ b/res/res_sorcery_realtime.c | 2 b/res/res_stasis.c | 6 b/res/stasis/control.c | 4 b/tests/test_sorcery_memory_cache_thrash.c | 618 ++ b/tests/test_strings.c | 70 b/tests/test_threadpool.c | 81 certified-asterisk-13.1-cert2-summary.html | 62 certified-asterisk-13.1-cert2-summary.txt | 93 191 files changed, 10269 insertions(+), 2854 deletions(-)