Changeset 11015 for modules/branches/2.8
- Timestamp:
- 01/19/11 11:23:45 (2 years ago)
- Files:
-
- modules/branches/2.8/core/functions.inc.php (modified) (3 diffs)
- modules/branches/2.8/core/module.xml (modified) (2 diffs)
Legend:
- Unmodified
- Added
- Removed
- Modified
- Copied
- Moved
modules/branches/2.8/core/functions.inc.php
r10824 r11015 1459 1459 $ext->add($tcontext,$tcustom,'',new ext_gosubif('$["${PREFIX_TRUNK_${DIAL_TRUNK}}" != ""]','sub-flp-${DIAL_TRUNK},s,1')); 1460 1460 $ext->add($tcontext,$tcustom,'',new ext_set('OUTNUM', '${OUTPREFIX_${DIAL_TRUNK}}${DIAL_NUMBER}')); // OUTNUM is the final dial number 1461 1462 // Address Security Vulnerability in many earlier versions of Asterisk from an external source tranmitting a 1463 // malicious CID that can cause overflows in the Asterisk code. 1464 // 1465 $ext->add($tcontext, $tcustom, '', new ext_set('CALLERID(number)','${CALLERID(number):0:40}')); 1466 $ext->add($tcontext, $tcustom, '', new ext_set('CALLERID(name)','${CALLERID(name):0:40}')); 1467 1461 1468 $ext->add($tcontext,$tcustom,'',new ext_dial('${EVAL(${TDIAL_STRING})}','300,${DIAL_TRUNK_OPTIONS}')); 1462 1469 $ext->add($tcontext,$tcustom,'hangit',new ext_hangup()); … … 1477 1484 1478 1485 $ext->add($tcontext,$texten,'',new ext_dial('${TDIAL_STRING}/${OUTNUM}','300,${DIAL_TRUNK_OPTIONS}')); 1486 // Address Security Vulnerability in many earlier versions of Asterisk from an external source tranmitting a 1487 // malicious CID that can cause overflows in the Asterisk code. 1488 // 1489 $ext->add($tcontext, $texten, '', new ext_set('CALLERID(number)','${CALLERID(number):0:40}')); 1490 $ext->add($tcontext, $texten, '', new ext_set('CALLERID(name)','${CALLERID(name):0:40}')); 1491 1479 1492 $ext->add($tcontext,$texten,'hangit',new ext_hangup()); 1480 1493 } … … 2281 2294 $ext->add($context, $exten, '', new ext_macro('hangupcall')); 2282 2295 $ext->add($context, $exten, '', new ext_congestion(20)); 2283 $ext->add($context, $exten, 'continue', new ext_noop('Using CallerID ${CALLERID(all)}')); 2296 2297 // Address Security Vulnerability in many earlier versions of Asterisk from an external source tranmitting a 2298 // malicious CID that can cause overflows in the Asterisk code. 2299 // 2300 $ext->add($context, $exten, 'continue', new ext_set('CALLERID(number)','${CALLERID(number):0:40}')); 2301 $ext->add($context, $exten, '', new ext_set('CALLERID(name)','${CALLERID(name):0:40}')); 2302 2303 $ext->add($context, $exten, '', new ext_noop('Using CallerID ${CALLERID(all)}')); 2284 2304 $ext->add($context, 'h', '', new ext_macro('hangupcall')); 2285 2305 modules/branches/2.8/core/module.xml
r10827 r11015 4 4 <category>Basic</category> 5 5 <name>Core</name> 6 <version>2.8.0. 7</version>6 <version>2.8.0.8</version> 7 7 <publisher>FreePBX</publisher> 8 8 <license>GPLv2+</license> … … 10 10 <canuninstall>no</canuninstall> 11 11 <changelog> 12 *2.8.0.8* #4749 (Avoid Asterisk Security Vulnerability) 12 13 *2.8.0.7* #4689, #4697, #4730 13 14 *2.8.0.6* #4634, #4453, #4563
