The Asterisk Development Team has announced the release of Asterisk 11.22.0.

This release is available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk

The release of Asterisk 11.22.0 resolves several issues reported by the community and would have not been possible without your participation.

Thank you!

The following are the issues resolved in this release:

Bugs fixed in this release:

———————————–

* ASTERISK-25857 – func_aes: incorrect use of strlen() leads to

     data corruption (Reported by Gianluca Merlo)

* ASTERISK-25321 – DeadLock ChanSpy with call over Local

     channel (Reported by Filip Frank)

* ASTERISK-25800 – Calculate talktime when is first call

     answered (Reported by Rodrigo Ramirez Norambuena)

* ASTERISK-25272 – The ICONV dialplan function sometimes

     returns garbage (Reported by Etienne Lessard)

* ASTERISK-20987 – non-admin users, who join muted conference are

     not being muted (Reported by hristo)

* ASTERISK-24972 – Transport Layer Security (TLS) Protocol BEAST

     Vulnerability – Investigate vulnerability of HTTP server

     (Reported by Alex A. Welzl)

* ASTERISK-25603 – udptl: Uninitialized lengths and bufs in

     udptl_rx_packet cause ast_frdup crash (Reported by Walter

     Doekes)

* ASTERISK-25742 – Secondary IFP Packets can result in accessing

     uninitialized pointers and a crash (Reported by Torrey Searle)

* ASTERISK-25397 – chan_sip: File descriptor leak with

     non-default timert1 (Reported by Alexander Traud)

* ASTERISK-25730 – build:  make uninstall after make distclean

     tries to remove root (Reported by George Joseph)

* ASTERISK-25722 – ASAN & testsute: stack-buffer-overflow in

     sip_sipredirect (Reported by Badalian Vyacheslav)

* ASTERISK-25714 – ASAN:heap-buffer-overflow in logger.c (Reported

     by Badalian Vyacheslav)

* ASTERISK-24801 – ASAN: ast_el_read_char stack-buffer-overflow

     (Reported by Badalian Vyacheslav)

* ASTERISK-25701 – core: Endless loop in “core show

     taskprocessors” (Reported by ibercom)

* ASTERISK-25700 – main/config: Clean config maps on shutdown.

     (Reported by Corey Farrell)

* ASTERISK-25690 – Hanging up when executing connected line sub

     does not cause hangup (Reported by Joshua Colp)

* ASTERISK-25687 – res_musiconhold: Concurrent invocations of ‘moh

     reload’ cause a crash (Reported by Sean Bright)

* ASTERISK-25394 – pbx: Incorrect device and presence state when

     changing hint details (Reported by Joshua Colp)

* ASTERISK-25640 – pbx: Deadlock on features reload and state

     change hint. (Reported by Krzysztof Trempala)

* ASTERISK-25681 – devicestate: Engine thread is not shut down

     (Reported by Corey Farrell)

* ASTERISK-25680 – manager: manager_channelvars is not cleaned at

     shutdown (Reported by Corey Farrell)

* ASTERISK-25679 – res_calendar leaks scheduler. (Reported by

     Corey Farrell)

* ASTERISK-25677 – pbx_dundi: leaks during failed load. (Reported

     by Corey Farrell)

* ASTERISK-25673 – res_crypto leaks CLI entries (Reported by Corey

     Farrell)

* ASTERISK-25647 – bug of cel_radius.c: wrong point of

     ADD_VENDOR_CODE (Reported by Aaron An)

* ASTERISK-25614 – DTLS negotiation delays (Reported by Dade

     Brandon)

* ASTERISK-25442 – using realtime (mysql) queue members are never

     updated in wait_our_turn function (app_queue.c)  (Reported by

     Carlos Oliva)

* ASTERISK-25624 – AMI Event OriginateResponse bug (Reported by

     sungtae kim)

Improvements made in this release:

———————————–

* ASTERISK-24813 – asterisk.c: #if statement in listener()

     confuses code folding editors (Reported by Corey Farrell)

* ASTERISK-25767 – Add check to configure for sanitizes

     (Reported by Badalian Vyacheslav)

* ASTERISK-25068 – Move commonly used FreePBX extra sounds to the

     core set (Reported by Rusty Newton)

For a full list of changes in this release, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-11.22.0

Thank you for your continued support of Asterisk!

Leave a Reply

Your email address will not be published. Required fields are marked *

2 × two =