telephony icon indicating copy to clipboard operation
telephony copied to clipboard
verified publisher icon openwrt

asterisk: update to version 20.14.1

Open dangowrt opened this issue 7 months ago • 3 comments

Maintainer: @jslachta Compile tested: mips_24kc Run tested: lantiq/xrx200 (incl. asterisk-chan-lantiq)

Description: Changes since 20.14.0:

asterisk.c: Add option to restrict shell access from remote consoles.

Author: George Joseph Date: 2025-05-19

UserNote: A new asterisk.conf option 'disable_remote_console_shell' has been added that, when set, will prevent remote consoles from executing shell commands using the '!' prefix.

Resolves: #GHSA-c7p6-7mvq-8jq2

res_pjsip_messaging.c: Mask control characters in received From display name

Author: George Joseph Date: 2025-03-24

Incoming SIP MESSAGEs will now have their From header's display name sanitized by replacing any characters < 32 (space) with a space.

Resolves: #GHSA-2grh-7mhv-fcfw

dangowrt avatar Jun 23 '25 01:06 dangowrt

Thank you for the PR and for the run testing! Much appreciated!

jslachta avatar Jun 23 '25 05:06 jslachta

@dangowrt Do you know if your PR fixes https://github.com/openwrt/telephony/issues/908 ?

BKPepe avatar Jul 20 '25 20:07 BKPepe

I think the commit message should mention the CVE ID as well for easier tracking.

Rondom avatar Jul 30 '25 13:07 Rondom