Asterisk News

Asterisk Releases

Asterisk 11.8.0-rc1 Now Available

Jan 15, 2014

The Asterisk Development Team has announced the first release candidate of Asterisk 11.8.0. This release candidate is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk

The release of Asterisk 11.8.0-rc1 resolves several issues reported by the community and would have not been possible without your participation. Thank you!

The following is a sample of the issues resolved in this release candidate:

  • config: Allow ConfBridge DTMF menus to have '#' as the first digit.
    (Closes issue ASTERISK-22478. Reported by Nicolas Tanski)
  • app_queue: Honor penalty limits of 0
    (Closes issue ASTERISK-20862. Reported by Schmooze Com)
  • chan_sip: Hangup transferer/transferee when transfer to Parking fails
    (Closes issue ASTERISK-22834. Reported by rsw686)
  • res_fax_spandsp: Always init T.38 session to avoid crashes during state change
    (Closes issue ASTERISK-21242. Reported by Ashley Winters)
  • res_rtp_asterisk: Fails to resume WebRTC call from hold
    (Closes issue ASTERISK-22911. Reported by Vytis Valentinavičius)

For a full list of changes in this release candidate, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.8.0-rc1

Thank you for your continued support of Asterisk!


Asterisk 1.8.26.0-rc1 Now Available

Jan 15, 2014

The Asterisk Development Team has announced the first release candidate of Asterisk 1.8.26.0. This release candidate is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk

The release of Asterisk 1.8.26.0-rc1 resolves several issues reported by the community and would have not been possible without your participation. Thank you!

The following is a sample of the issues resolved in this release candidate:

  • app_queue: Honor penalty limits of 0
    (Closes issue ASTERISK-20862. Reported by Schmooze Com)
  • cel_pgsql: deadlock on unload and core_event_dispatcher
    (Closes issue ASTERISK-22854. Reported by Etienne Lessard)
  • chan_sip: keep same local (from) tag for outgoing register requests
    (Closes issue ASTERISK-12117. Reported by Pawel Pierscionek)
  • chan_sip: Hangup transferer/transferee when transfer to Parking fails
    (Closes issue ASTERISK-22834. Reported by rsw686)
  • res_fax_spandsp: Always init T.38 session to avoid crashes during state change
    (Closes issue ASTERISK-21242. Reported by Ashley Winters)

For a full list of changes in this release candidate, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.26.0-rc1

Thank you for your continued support of Asterisk!


Asterisk 11.7.0 Now Available

Dec 17, 2013

The Asterisk Development Team has announced the release of Asterisk 11.7.0. This release is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk

The release of Asterisk 11.7.0 resolves several issues reported by the community and would have not been possible without your participation. Thank you!

The following is a sample of the issues resolved in this release:

  • app_confbridge: Can now set the language used for announcements to the conference.
    (Closes issue ASTERISK-19983. Reported by Jonathan White)
  • app_queue: Fix CLI "queue remove member" queue_log entry.
    (Closes issue ASTERISK-21826. Reported by Oscar Esteve)
  • chan_sip: Do not increment the SDP version between 183 and 200 responses.
    (Closes issue ASTERISK-21204. Reported by NITESH BANSAL)
  • chan_sip: Allow a sip peer to accept both AVP and AVPF calls.
    (Closes issue ASTERISK-22005. Reported by Torrey Searle)
  • chan_sip: Fix Realtime Peer Update Problem When Un-registering And Expires Header In 200ok.
    (Closes issue ASTERISK-22428. Reported by Ben Smithurst)

For a full list of changes in this release, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.7.0

Thank you for your continued support of Asterisk!


Asterisk 1.8.25.0 Now Available

Dec 17, 2013

The Asterisk Development Team has announced the release of Asterisk 1.8.25.0. This release is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk

The release of Asterisk 1.8.25.0 resolves several issues reported by the community and would have not been possible without your participation. Thank you!

The following is a sample of the issues resolved in this release:

  • chan_sip: Fix an issue where an incompatible audio format may be added to SDP.
    (Closes issue ASTERISK-21131. Reported by nbougues)
  • cdr_adaptive_odbc: Also apply a filter when the CDR value is empty.
    (Closes issue ASTERISK-22272. Reported by Jordi Llull Chavarria)
  • app_queue: Fix Queuelog EXITWITHKEY only logging two of four fields.
    (Closes issue ASTERISK-22197. Reported by Dalius M.)
  • chan_sip: Do not increment the SDP version between 183 and 200 responses.
    (Closes issue ASTERISK-21204. Reported by NITESH BANSAL)
  • chan_sip: Fix Realtime Peer Update Problem When Un-registering And Expires Header In 200ok.
    (Closes issue ASTERISK-22428. Reported by Ben Smithurst)

For a full list of changes in this release, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.25.0

Thank you for your continued support of Asterisk!


Asterisk 1.8.15-cert4, 1.8.24.1, 10.12.4, 10.12.4-digiumphones, 11.2-cert3, 11.6.1 Now Available (Security Release)

Dec 16, 2013

The Asterisk Development Team has announced security releases for Certified Asterisk 1.8.15, 11.2, and Asterisk 1.8, 10, and 11. The available security releases are released as versions 1.8.15-cert4, 11.2-cert3, 1.8.24.1, 10.12.4, 10.12.4-digiumphones, and 11.6.1.

These releases are available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/releases

The release of these versions resolve the following issues:

  • A buffer overflow when receiving odd length 16 bit messages in app_sms. An infinite loop could occur which would overwrite memory when a message is received into the unpacksms16() function and the length of the message is an odd number of bytes.
  • Prevent permissions escalation in the Asterisk Manager Interface. Asterisk now marks certain individual dialplan functions as 'dangerous', which will inhibit their execution from external sources. A 'dangerous' function is one which results in a privilege escalation.

    For example, if one were to read the channel variable SHELL(rm -rf /) Bad Things(TM) could happen; even if the external source has only read permissions. Execution from external sources may be enabled by setting 'live_dangerously' to 'yes' in the [options] section of asterisk.conf.

    Although doing so is not recommended.

These issues and their resolutions are described in the security advisories. For more information about the details of these vulnerabilities, please read security advisories AST-2013-006 and AST-2013-007, which were released at the same time as this announcement.

For a full list of changes in the current releases, please see the ChangeLogs:

The security advisories are available at:

Thank you for your continued support of Asterisk!


Pages

Subscribe to