<!doctype html>
<html>
<head>
<meta name="viewport" content="width=device-width">
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<meta charset="UTF-8">
<!-- <title>[asterisk-security] CORRECTED asterisk release certified-18.9-cert6</title> -->
<style media="all" type="text/css">
@media only screen and (max-width: 620px) {
table[class=body] h1 {
font-size: 28px !important;
margin-bottom: 10px !important;
}
table[class=body] h2 {
font-size: 22px !important;
margin-bottom: 10px !important;
}
table[class=body] h3 {
font-size: 16px !important;
margin-bottom: 10px !important;
}
table[class=body] .wrapper,
table[class=body] .article {
padding: 10px !important;
}
table[class=body] .content {
padding: 0 !important;
}
table[class=body] .container {
padding: 0 !important;
width: 100% !important;
}
table[class=body] .header {
margin-bottom: 10px !important;
}
table[class=body] .main {
border-left-width: 0 !important;
border-radius: 0 !important;
border-right-width: 0 !important;
}
table[class=body] .btn table {
width: 100% !important;
}
table[class=body] .btn a {
width: 100% !important;
}
table[class=body] .img-responsive {
height: auto !important;
max-width: 100% !important;
width: auto !important;
}
table[class=body] .alert td {
border-radius: 0 !important;
padding: 10px !important;
}
table[class=body] .span-2,
table[class=body] .span-3 {
max-width: none !important;
width: 100% !important;
}
table[class=body] .receipt {
width: 100% !important;
}
}
@media all {
.ExternalClass {
width: 100%;
}
.ExternalClass,
.ExternalClass p,
.ExternalClass span,
.ExternalClass font,
.ExternalClass td,
.ExternalClass div {
line-height: 100%;
}
.apple-link a {
color: inherit !important;
font-family: inherit !important;
font-size: inherit !important;
font-weight: inherit !important;
line-height: inherit !important;
text-decoration: none !important;
}
}
</style>
</head>
<body class="" style="font-family: sans-serif; -webkit-font-smoothing: antialiased; font-size: 14px; line-height: 1.4; -ms-text-size-adjust: 100%; -webkit-text-size-adjust: 100%; background-color: #fff; color: #444444;">
<table border="0" cellpadding="0" cellspacing="0" class="body" style="border-collapse: separate; mso-table-lspace: 0pt; mso-table-rspace: 0pt; width: 100%; background-color: #fff;" width="100%">
<tr>
<td class="container" style="font-family: sans-serif; font-size: 14px; vertical-align: top; display: block; margin: 0 !important; max-width: 580px; padding: 0; width: 580px;" width="580" valign="top">
<div class="content" style="box-sizing: border-box; display: block; margin: 0 auto; max-width: 580px; padding: 0;">
<!-- START WHITE CONTAINER -->
<table class="main" style="border-collapse: separate; mso-table-lspace: 0pt; mso-table-rspace: 0pt; width: 100%; background: #fff; border-radius: 3px;" width="100%">
<!-- START MAIN CONTENT AREA -->
<tr>
<td class="wrapper" style="font-family: sans-serif; font-size: 14px; vertical-align: top; box-sizing: border-box; padding: 0; padding-top: 15px;" valign="top">
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: separate; mso-table-lspace: 0pt; mso-table-rspace: 0pt; width: 100%;" width="100%">
<tr>
<td style="font-family: sans-serif; font-size: 14px; vertical-align: top;" valign="top">
<div style="margin-left: 0px;">
<div style="font-family: sans-serif; font-size: 14px; font-weight: normal; margin: 0;" class="intro"></div>
<div style="font-family: sans-serif; font-size: 14px; font-weight: normal; margin: 0; background-color: #ffffff;padding:15px;" class="body">
<p>Bäste kund,</p>
<p>tack för att du kontaktar oss!<br />
Vi har för närvarande högt tryck på vår kundservice och vi gör vårt yttersta för att besvara ditt ärende så snabbt som möjligt.<br />
Tack för ditt tålamod och förståelse!</p>
<p>Vanliga frågor och svar hittar ni via länken nedan: <a href="https://royaldesign.se/kundtjanst">https://royaldesign.se/kundtjanst</a></p>
<p>Vid avbeställningar råder vi dig till att ringa oss på: 010 750 25 21<BR></p>
<p>Ha en fortsatt trevlig dag!</p>
<p><IMG SRC="https://files.dixa.io/public/93891595-919a-40cb-8692-6041296a9b8c/attachment/1821916cf7d50c40efd6b8988cca30e6"></p>
</div>
<div style="font-family: sans-serif; font-size: 14px; font-weight: normal; margin: 0; padding-top: 45px;background-color: #ffffff;padding:15px;margin-bottom:30px;" class="footer dixa_signature">
</div>
<div style="width: 0px; height: 0px; max-width: 0px; max-height: 0px; overflow: hidden; display:none;">
<p>Previous-message-reference: <CAP=uFEsco8knetYgFT0d=CNe+6jdjmwLGoz732w6vSCtgDwUsA@mail.gmail.com></p>
<p>Previous-message-reference: <57276b05a0c14f71aff36afe436a2fde@email.dixa.io></p>
</div>
<blockquote class="dixa_quote">
<div style="background: #ffffff; padding: 15px; border-left: 3px solid #e9f4ff; margin-bottom: 5px; color: #676767;">
<div style="font-family: sans-serif; font-size: 14px; font-weight: normal; margin: 0;" class="footer">
<b>Asterisk Development Team</b> <i>December 14, 21:11 GMT</i><br />
<p>The earlier release announcement should NOT have had any User or Upgrade<br />
notes.</p>
<p>The Asterisk Development Team would like to announce security release<br />
Certified Asterisk 18.9-cert6.</p>
<p>The release artifacts are available for immediate download at<br />
<a href="https://github.com/asterisk/asterisk/releases/tag/certified-18.9-cert6">https://github.com/asterisk/asterisk/releases/tag/certified-18.9-cert6</a><br />
and<br />
<a href="https://downloads.asterisk.org/pub/telephony/certified-asterisk">https://downloads.asterisk.org/pub/telephony/certified-asterisk</a></p>
<p>The following security advisories were resolved in this release:<br />
- <a href="https://github.com/asterisk/asterisk/security/advisories/GHSA-8857-hfmw-vg8f">Path traversal via AMI GetConfig allows access to outside files</a><br />
- <a href="https://github.com/asterisk/asterisk/security/advisories/GHSA-hxj9-xwr8-w8pq">Asterisk susceptible to Denial of Service via DTLS Hello packets during<br />
call initiation</a><br />
- <a href="https://github.com/asterisk/asterisk/security/advisories/GHSA-5743-x3p5-3rg7">PJSIP logging allows attacker to inject fake Asterisk log entries</a><br />
- <a href="https://github.com/asterisk/asterisk/security/advisories/GHSA-98rc-4j27-74hh">PJSIP_HEADER dialplan function can overwrite memory/cause crash when<br />
using 'update'</a></p>
<h1><a href="#change-log-for-release-asterisk-certified-189-cert6" id="change-log-for-release-asterisk-certified-189-cert6">Change Log for Release asterisk-certified-18.9-cert6</a></h1>
<h2><a href="#links" id="links">Links:</a></h2>
<ul>
<li><a href="https://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-certified-18.9-cert6.md">Full ChangeLog</a></li>
<li><a href="https://github.com/asterisk/asterisk/compare/certified-18.9-cert5...certified-18.9-cert6">GitHub Diff</a></li>
<li><a href="https://downloads.asterisk.org/pub/telephony/asterisk/asterisk-certified-18.9-cert6.tar.gz">Tarball</a></li>
<li><a href="https://downloads.asterisk.org/pub/telephony/asterisk">Downloads</a></li>
</ul>
<h2><a href="#summary" id="summary">Summary:</a></h2>
<ul>
<li>res_pjsip_header_funcs: Duplicate new header value, don't copy.</li>
<li>res_rtp_asterisk.c: Check DTLS packets against ICE candidate list</li>
<li>manager.c: Prevent path traversal with GetConfig.</li>
<li>res_pjsip: disable raw bad packet logging</li>
</ul>
<h2><a href="#user-notes" id="user-notes">User Notes:</a></h2>
<h2><a href="#upgrade-notes" id="upgrade-notes">Upgrade Notes:</a></h2>
<h2><a href="#closed-issues" id="closed-issues">Closed Issues:</a></h2>
<p>None</p>
</div>
</div>
</blockquote>
<!-- <p style="font-family: sans-serif; font-size: 16px; font-weight: normal; margin: 0; margin-bottom: 30px; margin-top: 30px;">
<span class="apple-link" style="color: #999999; font-size: 14px; text-align: left;"><a href="https://www.dixa.com/?ref=email_cs">Powered by Dixa</a></span>
</p> -->
</div>
</td>
</tr>
</table>
</td>
</tr>
<!-- END MAIN CONTENT AREA -->
</table>
<!-- END FOOTER -->
<!-- END WHITE CONTAINER --></div>
</td>
</tr>
</table>
<img alt="" src="https://9gdl6gmj.r.eu-west-1.awstrack.me/I0/0102018c6a2b485b-0ecc33f6-f16c-4e73-87a0-547081c7a55d-000000/TpGD-xGC2C7EfWKvElNr_GgPw08=352" style="display: none; width: 1px; height: 1px;">
</body>
</html>