ubuntu/+source/asterisk:debian/stretch

Last commit made on 2018-11-10
Get this branch:
git clone -b debian/stretch https://git.launchpad.net/ubuntu/+source/asterisk
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
debian/stretch
Repository:
lp:ubuntu/+source/asterisk

Recent commits

ff4965e... by Bernhard Schmidt <email address hidden> on 2018-09-30

Import patches-unapplied version 1:13.14.1~dfsg-2+deb9u4 to debian/stretch

Imported using git-ubuntu import.

Changelog parent: 7ef9b9104d9d348a999213060f57555890766986

New changelog entries:
  * AST-2018-004 / CVE-2018-7284: Crash when receiving SUBSCRIBE request
    (Closes: #891227)
  * AST-2018-005 / CVE-2018-7286: Crash when large numbers of TCP connections
    are closed suddenly (Closes: #891228)
  * AST-2018-008 / CVE-2018-12227: PJSIP endpoint presence disclosure when
    using ACL (Closes: #902954)
  * AST-2018-009 / CVE-2018-17281: Remote crash vulnerability in HTTP
    websocket upgrade (Closes: #909554)

7ef9b91... by Tzafrir Cohen <email address hidden> on 2017-12-29

Import patches-unapplied version 1:13.14.1~dfsg-2+deb9u3 to debian/stretch

Imported using git-ubuntu import.

Changelog parent: 6e65fdd3f8970435f33cca80741c029d20e86892

New changelog entries:
  [ Tzafrir Cohen ]
  * AST-2017-009: ignored for the record.
  * AST-2017-010 / CVE-2017-16671: Buffer overflow in CDRs (call logs)
    (Closes: #881257)
  * AST-2017-011 / CVE-2017-16672: Memory/File Descriptor/RTP leak in
    pjsip session resource (Closes: #881256)
  * AST-2017-012 / CVE-2017-17664: Remote Crash Vulnerability in RTCP Stack
    (Closes: #884345)
  * AST-2017-013 / CVE-2017-17090: DoS (memory leak) in chan_skinny
    (Closes: #883342)
  * ASTERISK-26606.patch: fix openssl error reporting (Closes: #883767)
  * debian/.gitignore: typo
  * gbp.conf: set branch name
  [ Bernhard Schmidt ]
  * Drop duplicate filter line from d/gbp.conf

6e65fdd... by Bernhard Schmidt <email address hidden> on 2017-09-23

Import patches-unapplied version 1:13.14.1~dfsg-2+deb9u2 to debian/stretch

Imported using git-ubuntu import.

Changelog parent: ce8be150e8287a389ff0ffaa1d12e69fab8bd9f9

New changelog entries:
  * CVE-2017-14603 / AST-2017-008
    This is a follow-up for AST-2017-005: RTP/RTCP information leak
    improving robustness of the security fix and fixing a regression
    with re-INVITEs (Closes: #876328)
  * Fix one-way audio with chan_sip when transcoding (Closes: #875450)

ce8be15... by Bernhard Schmidt <email address hidden> on 2017-09-02

Import patches-unapplied version 1:13.14.1~dfsg-2+deb9u1 to debian/stretch

Imported using git-ubuntu import.

Changelog parent: 93bebd57f9a9aa6bf57b7b29943bcf4a082fef8e

New changelog entries:
  * CVE-2017-14099 / AST-2017-005
    Media takeover in RTP stack ("RTP bleed") (Closes: #873907)
  * CVE-2017-14100 / AST-2017-006
    Shell access command injection in app_minivm (Closes: #873908)

93bebd5... by Bernhard Schmidt <email address hidden> on 2017-06-02

Import patches-unapplied version 1:13.14.1~dfsg-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: a2b1a6518daf1977edf603780c64495a56ff9dd3

New changelog entries:
  [ Tzafrir Cohen ]
  * CVE-2017-9358 / AST-2017-004: Memory exhaustion on short SCCP packets
    (Closes: #863906)
  * Documentation updates in debian/:
    - d/p/test_framework.patch: no longer an upstream issue
    - d/asterisk-config-custom:
      - fix typo: buildbuildpackage (Closes: #860902)
      - add comment that dpkg-buildpackage comes from dpkg-dev

a2b1a65... by Bernhard Schmidt <email address hidden> on 2017-04-10

Import patches-unapplied version 1:13.14.1~dfsg-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: fe788c0b8190abeabfd1798de93769cf646afde3

New changelog entries:
  * New upstream version 13.14.1
    - Fixes AST-2017-001 (Buffer overflow in CDR's set user) (Closes: #859910)
  * Import upstream fix to set the RTP source address to the address bound by
    the PJSIP transport (Closes: #859911)

fe788c0... by Bernhard Schmidt <email address hidden> on 2017-02-14

Import patches-unapplied version 1:13.14.0~dfsg-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 1d98354f4fe1b9725f2dad646a2fba54afa59993

New changelog entries:
  [ Bernhard Schmidt ]
  * New upstream version 13.14.0~dfsg
    - Fixes RTP error on systems with disabled IPv6 (Closes: #853792)
    - Fixes asymetric RTP codec selection (Closes: #855014)
  * drop pjsip_improve_logging.patch, applied upstream
  * drop configure-osarch, applied upstream

1d98354... by Bernhard Schmidt <email address hidden> on 2017-01-24

Import patches-unapplied version 1:13.13.1~dfsg-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: a33719bf7881ef5b3f02d54e20016c4d490ff91b

New changelog entries:
  * Depend on asterisk-core-sounds-en instead of -gsm

a33719b... by Bernhard Schmidt <email address hidden> on 2017-01-17

Import patches-unapplied version 1:13.13.1~dfsg-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 1b7f1cd604bfa27b4880b4a763461b8efe076ec5

New changelog entries:
  [ Bernhard Schmidt ]
  * Patch from upstream: pjsip_improve_logging.patch to improve logging
    levels in pjproject/chan_pjsip (Closes: #849804).
    Thanks to Joerg Dorchain for testing.
  * Disable SNMP support for now
    libsnmp-dev pulls in libssl1.0-dev, which is not coinstallable with
    libssl-dev needed by Asterisk and all other dependencies

1b7f1cd... by Bernhard Schmidt <email address hidden> on 2016-12-25

Import patches-unapplied version 1:13.13.1~dfsg-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 59bf8770f44035585b406d6a408cdeaea5fa9b6a

New changelog entries:
  [ Tzafrir Cohen ]
  * test_framework.patch: fix ABI
  * Add a DAHDI hook script for Asterisk (Closes: #848584)
  [ Bernhard Schmidt ]
  * disable the open-source Opus and VP8 codec
    - these are built out-of-tree in asterisk-opus now, add Suggests