search for: res_pjsip_acl

...I start asterisk, I get a lot of errors concerning res_pjsip (see below) on the asterisk CLI. Anyone have some input on this ? Thanks. Kind regards. [root at sip admin]# ls /usr/lib64/asterisk/modules | grep pjsip chan_pjsip.so func_pjsip_aor.so func_pjsip_contact.so func_pjsip_endpoint.so res_pjsip_acl.so res_pjsip_authenticator_digest.so res_pjsip_caller_id.so res_pjsip_config_wizard.so res_pjsip_dialog_info_body_generator.so res_pjsip_diversion.so res_pjsip_dlg_options.so res_pjsip_dtmf_info.so res_pjsip_endpoint_identifier_anonymous.so res_pjsip_endpoint_identifier_ip.so res_pjsip_endpoint_ide...

...Last Updated On November 20, 2014 Advisory Contact Jonathan Rose <jrose AT digium DOT com> CVE Name Pending Description The Asterisk module res_pjsip_acl provides the ability to configure ACLs that may be used to reject SIP requests from various hosts. In affected versions of Asterisk, this module fails to create and apply ACLs defined in pjsip.conf. This...

...Last Updated On November 20, 2014 Advisory Contact Jonathan Rose <jrose AT digium DOT com> CVE Name Pending Description The Asterisk module res_pjsip_acl provides the ability to configure ACLs that may be used to reject SIP requests from various hosts. In affected versions of Asterisk, this module fails to create and apply ACLs defined in pjsip.conf. This...

...ound. I know that I should have loaded this module, res_pjsip_endpoint_identifier_ip.so and it is loaded. In fact, all others authentitcation modules are not, since I only identify via IP. I did not load all the methods I will never use. load => res_pjsip.so load => chan_pjsip.so load => res_pjsip_acl.so noload => res_pjsip_authenticator_digest.so load => res_pjsip_caller_id.so load => res_pjsip_diversion.so load => res_pjsip_dtmf_info.so noload => res_pjsip_endpoint_identifier_anonymous.so load => res_pjsip_endpoint_identifier_ip.so noload => res_pjsip_endpoint_identifier_u...

...- Crash - assert_fail in libc in pjmedia_sdp_neg_negotiate from /usr/local/lib/libpjmedia.so.2 (Reported by yaron nahum) * ASTERISK-24528 - res_pjsip_refer: Sending INVITE with Replaces in-dialog with invalid target causes crash (Reported by Joshua Colp) * ASTERISK-24531 - res_pjsip_acl: ACLs not applied on initial module load (Reported by Matt Jordan) * ASTERISK-24469 - Security Vulnerability: Mixed IPv4/IPv6 ACLs allow blocked addresses through (Reported by Matt Jordan) * ASTERISK-24533 - 2 threads created per chan_sip entry (Reported by xrobau) * ASTERISK-2...

...- Crash - assert_fail in libc in pjmedia_sdp_neg_negotiate from /usr/local/lib/libpjmedia.so.2 (Reported by yaron nahum) * ASTERISK-24528 - res_pjsip_refer: Sending INVITE with Replaces in-dialog with invalid target causes crash (Reported by Joshua Colp) * ASTERISK-24531 - res_pjsip_acl: ACLs not applied on initial module load (Reported by Matt Jordan) * ASTERISK-24469 - Security Vulnerability: Mixed IPv4/IPv6 ACLs allow blocked addresses through (Reported by Matt Jordan) * ASTERISK-24533 - 2 threads created per chan_sip entry (Reported by xrobau) * ASTERISK-2...

...- Crash - assert_fail in libc in pjmedia_sdp_neg_negotiate from /usr/local/lib/libpjmedia.so.2 (Reported by yaron nahum) * ASTERISK-24528 - res_pjsip_refer: Sending INVITE with Replaces in-dialog with invalid target causes crash (Reported by Joshua Colp) * ASTERISK-24531 - res_pjsip_acl: ACLs not applied on initial module load (Reported by Matt Jordan) * ASTERISK-24469 - Security Vulnerability: Mixed IPv4/IPv6 ACLs allow blocked addresses through (Reported by Matt Jordan) * ASTERISK-24542 - [patch]Failure showing codecs via 'core show channeltype <tech&g...

...- Crash - assert_fail in libc in pjmedia_sdp_neg_negotiate from /usr/local/lib/libpjmedia.so.2 (Reported by yaron nahum) * ASTERISK-24528 - res_pjsip_refer: Sending INVITE with Replaces in-dialog with invalid target causes crash (Reported by Joshua Colp) * ASTERISK-24531 - res_pjsip_acl: ACLs not applied on initial module load (Reported by Matt Jordan) * ASTERISK-24469 - Security Vulnerability: Mixed IPv4/IPv6 ACLs allow blocked addresses through (Reported by Matt Jordan) * ASTERISK-24542 - [patch]Failure showing codecs via 'core show channeltype <tech&g...

...; (Reported by snuffy) * ASTERISK-24469 - Security Vulnerability: Mixed IPv4/IPv6 ACLs allow blocked addresses through (Reported by Matt Jordan) * ASTERISK-24534 - [patch]Register DB() as escalating to prevent users from writing to astdb (Reported by Gareth Palmer) * ASTERISK-24531 - res_pjsip_acl: ACLs not applied on initial module load (Reported by Matt Jordan) * ASTERISK-24490 - Security Vulnerability: CONFBRIDGE function's record_command option allows arbitrary parameters to be passed to MixMonitor, allowing remote execution of commands (Reported by Matt Jord...

...Matt Jordan) - [ASTERISK-24534 <https://issues.asterisk.org/jira/browse/ASTERISK-24534>] - [patch]Register DB() as escalating to prevent users from writing to astdb (Reported by Gareth Palmer) - [ASTERISK-24531 <https://issues.asterisk.org/jira/browse/ASTERISK-24531>] - res_pjsip_acl: ACLs not applied on initial module load (Reported by Matt Jordan) - [ASTERISK-24490 <https://issues.asterisk.org/jira/browse/ASTERISK-24490>] - Security Vulnerability: CONFBRIDGE function's record_command option allows arbitrary parameters to be passed to MixMonitor, allowing rem...