Asterisk 18.104.22.168 http://snapvoip.blogspot.com/
Asterisk Dev team has released a new version of Asterisk, Asterisk 22.214.171.124 to add a security fix that missed the earlier release, Asterisk 126.96.36.199. For more information on the security issue, please refer to security advisory AST-2011-001,
The Asterisk Development Team has announced a release for the security issue described in AST-2011-001.
Due to a failed merge, Asterisk 188.8.131.52 which should have included the security fix did not. Asterisk 184.108.40.206 contains the the changes which should have been included in Asterisk 220.127.116.11.
This releases is available for immediate download at
The releases of Asterisk 18.104.22.168, 22.214.171.124, 126.96.36.199, 188.8.131.52.1, 184.108.40.206.2, 220.127.116.11, and 18.104.22.168 resolve an issue when forming an outgoing SIP request while in pedantic mode, which can cause a stack buffer to be made to overflow if supplied with carefully crafted caller ID information. The issue and resolution are described in the AST-2011-001 security advisory.
For more information about the details of this vulnerability, please read the security advisory AST-2011-001, which was released at the same time as this announcement. For a full list of changes in the current release, please see the ChangeLog:
Security advisory AST-2011-001 is available at:
Thank you for your continued support of Asterisk!