Commits

Show all
Author Commit Message Labels Comments Date
tilghman
Fix for AST-2009-003
Tags
3 tags
Branches
1.2
tilghman
Updates to AST-2009-001
Tags
1.2.31.1
Branches
1.2
tilghman
1.2 regression on security fix AST-2009-001
Branches
1.2
kpfleming
add license for Allison Smith prompts (AST-162)
Branches
1.2
tilghman
Security fix AST-2009-001.
Tags
1.2.31
Branches
1.2
tilghman
Fix for AST-2008-012
Tags
1.2.30.4
Branches
1.2
seanbright
Fix build errors on FreeBSD (uint -> unsigned int). (closes issue #14006) Reported by: alphaque Patches: astobj2.h-patch uploaded by alphaque (license 259) (Slightly modified by seanbright)
Branches
1.2
tilghman
Regression fix for last security fix. Set the iseqno correctly. (closes issue #13918) Reported by: ffloimair Patches: 20081119__bug13918.diff.txt uploaded by Corydon76 (license 14) Tested by: ffloimair
Tags
1.2.30.3
Branches
1.2
tilghman
Regression fixes for Solaris
Tags
1.2.30.2
Branches
1.2
russell
Fix the IAX2 URI for calling Digium
Branches
1.2
tilghman
This part was not correctly patched for AST-2008-010.
Tags
1.2.30.1
Branches
1.2
tilghman
Fixes for AST-2008-010 and AST-2008-011
Tags
1.2.30
Branches
1.2
file
Copy the From header into a variable so that pedantic SIP handling does not try to mess with a NULL pointer. (AST-2008-008) (closes issue #12607) Reported by: hooi
Tags
1.2.29
Branches
1.2
russell
- Instead of only enforcing destination call number checking on an ACK, check all full frames except for PING and LAGRQ, which may be sent by older versions too quickly to contain the destination call number. (As suggested by Tim Panton on the asterisk-dev list) - Merge changes from team/russell/iax2-frame-race, which prevents PING and LAGRQ from being sent before the destination call number is known.
Branches
1.2
russell
Merge changes from team/russell/iax2-another-fix-to-the-fix As described in the following post to the asterisk-dev mailing list, only enforce destination call numbers when processing an ACK. http://lists.digium.com/pipermail/asterisk-dev/2008-May/033217.html
Branches
1.2
russell
Fix a race condition that bbryant just found while doing some IAX2 testing. He was running Asterisk trunk running IAX2 calls through a few Asterisk boxes, however, the audio was extremely choppy. We looked at a packet trace and saw a storm of INVAL and VNAK frames being sent from one box to another. It turned out that what had happened was that one box tried to send a CONTROL frame before the 3 way handshake had completed. So, that frame did not include the destination call number, because it didn't have it yet. Part of our recent work for security issues included an additional check to ensure that frames that are supposed to include the destination call number have the correct one. This c…
Tags
1.2.28.1
Branches
1.2
russell
Remove remnants of dlinkedlists. I didn't actually use them in the final version of my IAX2 improvements.
Branches
1.2
qwell
read requires an argument on some non-bash shells (closes issue #12593) Reported by: bkruse Patches: getilbc.sh_12593_v1.diff uploaded by bkruse (license 132)
Branches
1.2
russell
Merge changes from team/russell/iax2_find_callno_1.2 These changes address a critical performance issue introduced in the latest release. The fix for the latest security issue included a change that made Asterisk randomly choose call numbers to make them more difficult to guess by attackers. However, due to some inefficient (this is by far, an understatement) code, when Asterisk chose high call numbers, chan_iax2 became unusable after just a small…
Branches
1.2
kpfleming
stop script from appending source code if run multiple times
Branches
1.2
russell
When we receive a full frame that is supposed to contain our call number, ensure that it has the correct one. (closes issue #10078) (AST-2008-006)
Tags
1.2.28
Branches
1.2
kpfleming
update UPGRADE notes to document usage of the script
Branches
1.2
kpfleming
add a script to make getting the iLBC source code simple for end users
Branches
1.2
kpfleming
due to licensing restrictions, we cannot distribute the source code for iLBC encoding and decoding... so remove it, and add instructions on how the user can obtain it themselves
Branches
1.2
russell
Fix some very broken code that was introduced in 1.2.26 as a part of the security fix. The dnsmgr is not appropriate here. The dnsmgr takes a pointer to an address structure that a background thread continuously updates. However, in these cases, a stack variable was passed. That means that the dnsmgr thread would be continuously writing to bogus memory.
Branches
1.2
twilson
Fix character string being treated as format string
Tags
1.2.27
Branches
1.2
qwell
Do not return with a successful authentication if the From header ends up empty. (AST-2008-003)
Branches
1.2
russell
Change misery.digium.com to pbx.digium.com
Tags
1.2.26.2
Branches
1.2
tilghman
Fix for fix for security fix (third time's the charm?)
Branches
1.2
russell
Fix another potential seg fault ... (closes issue #11606) Reported by: dimas
Tags
1.2.26.1
Branches
1.2
  1. Prev
  2. Next