ubuntu/+source/asterisk:debian/wheezy

Last commit made on 2014-02-08
Get this branch:
git clone -b debian/wheezy https://git.launchpad.net/ubuntu/+source/asterisk
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
debian/wheezy
Repository:
lp:ubuntu/+source/asterisk

Recent commits

3fb6923... by Tzafrir Cohen <email address hidden> on 2014-01-04

Import patches-unapplied version 1:1.8.13.1~dfsg1-3+deb7u3 to debian/wheezy

Imported using git-ubuntu import.

Changelog parent: a40b7556e944f517b848453c1f5b7401fd56b4a9

New changelog entries:
  * Bumped repackages tarball number: security and main had different copies
    of the original.
  * Fix patch AST-2013-007: avoid warning on rasterisk.
  * Backport of fixes in Asterisk 1.8.24.1 (Closes: #732355):
    - Patch AST-2013-006: fixes a buffer overflow in app_sms.
    - Patch AST-2013-007: guards access to code execution from remote interfaces
      - but patch out the change in asterisk.conf.
      - Patch ASTERISK-20658: fixes potential crash with asterisk-realtime
  * Patch AST-2013-004 (CVE-2013-5641): chan_sip: crash in ACK to SDP
  * Patch AST-2013-005 (CVE-2013-5642): Fix crash caused by invalid SDP
    (Closes: #721220).
  * Patch fix_xmpp_19532: fix a crash of the XMPP code (Closes: #545272).
  * Update VCS links.

a40b755... by Tzafrir Cohen <email address hidden> on 2013-04-09

Import patches-unapplied version 1:1.8.13.1~dfsg-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: c0b1279798ab0c7a4d82c73e4fbf2467d4a73618

New changelog entries:
  * Rewrtote sip.conf parts of AST-2012-014: dropped patches
    fix-sip-tcp-no-FILE and fix-sip-tls-leak.
  * Reverting other changes rejected by the release team: README.Debian,
    powerpcspe and fix_xmpp_19532 dropped (#545272 and #701505 reopened).

c0b1279... by Tzafrir Cohen <email address hidden> on 2013-04-06

Import patches-unapplied version 1:1.8.13.1~dfsg-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: d5c8717aa4994d97a65216f0c0524f4b969a945f

New changelog entries:
  * Patches backported from Asterisk 1.8.19.1 (Closes: #697230):
    - Patch AST-2012-014 (CVE-2012-5976) - fixes Crashes due to large stack
      allocations when using TCP.
      The following two fixes were also pulled in order to easily apply it:
      - Patch fix-sip-tcp-no-FILE - Switch to reading with a recv loop
      - Patch fix-sip-tls-leak - Memory leak in the SIP TLS code
    - Patch AST-2012-015 (CVE-2012-5977) - Denial of Service Through
      Exploitation of Device State Caching
  * Patch powerpcspe: Fix OSARCH for powerpcspe (Closes: #701505).
  * README.Debian: document running the testsuite.
  * Patch fix_xmpp_19532: fix a crash of the XMPP code (Closes: #545272).
  * Patches backported from Asterisk 1.8.20.2 (Closes: #704114):
    - Patch AST-2013-002 (CVE-2012-2686): Prevent DoS in HTTP server with
      a large POST.
    - Patch AST-2013-003 (CVE-2012-2264): Prevent username disclosure in
      SIP channel driver.
  * Patch bluetooth_bind - fix breakage of chan_mobile (Closes: #614786).

d5c8717... by Tzafrir Cohen <email address hidden> on 2012-09-01

Import patches-unapplied version 1:1.8.13.1~dfsg-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 7a12e04a0a25ae3a7a5e24e711f104e5d507cfd9

New changelog entries:
  * New upstream release (Closes: #680470):
    - Fixes AST-2012-010 (CVE-2012-3863).
    - Fixes AST-2012-011 (CVE-2012-38612).
  * Patch AST-2012-012 (CVE-2012-2186): AMI User Shell Access with ExternalIVR
  * Patch AST-2012-012 (CVE-2012-4737): ACL rules ignored during calls
    by some IAX2 peers.

7a12e04... by Tzafrir Cohen <email address hidden> on 2012-05-16

Import patches-unapplied version 1:1.8.13.0~dfsg-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: c9810d9f189a76646546b9fb85594638c701b15c

New changelog entries:
  * New upstream release.
    - AST-2012-007 (CVE-2012-2947): Fix IAX receiving HOLD without
      suggested MOH class crash (Closes: #675204).
    - AST-2012-008 (CVE-2012-2948): remote crash issue in chan_skinny
      (Closes: #67521).
    - Patch gmime2.6 removed: merged upstream.
    - Patch sparc32_disable removed: hacks removed from Upstream Makefile.
  * Also pass LDFLAGS to menuselect (Closes: #664086 for real).
  * Fully strip-out the ilbc code (Closes: #665938, #665937).
    - Patch ilbc_disable to fix the build.
  * Patch httpd_port: Fix port number of Asterisk httpd.
  * While we're at it: Closes: #606959, which is a non-issue.

c9810d9... by Tzafrir Cohen <email address hidden> on 2012-04-25

Import patches-unapplied version 1:1.8.11.1~dfsg-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 84875e8b79f0d7864cabae1373612a78c96917d2

New changelog entries:
  * New upstream release, Closes: #670180:
    - AST-2012-004 - further Manager permission fixes (CVE-2012-2414).
    - AST-2012-005 - Heap overflow in chan_skinny (CVE-2012-2415).
    - AST-2012-006 - Remote crash on SIP "UPDATE" method (CVE-2012-2416).
  * Fix daemon status check in init.d script (Closes: #669378).
  * Patch menuselect_cflags: allow passing our flags to menuselect's build.
    - Use it t opass our CFLAGS to menuselect (Closes: #664086).

84875e8... by Mark Purcell on 2012-03-30

Import patches-unapplied version 1:1.8.10.1~dfsg-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 5c8506e974e7c8867a8ed762081a63d856a3fae2

New changelog entries:
  [ Victor Seva ]
  * Update backports/squeeze script gmime2.6 -> gmime2.4
  [ Tzafrir Cohen ]
  * New upstrean bug-fix release.
    - Fixes "[CVE-2012-1183 - CVE-2012-1184] Asterisk: AST-2012-002 and
      AST-2012-003 flaws" (Closes: #664411).
  * Patch gmime2.6 (Closes: #663998, #664004), also fixed Build-Depends.
  * Remove the text of RFC 3951 from the tarball. (Closes: #665937)

5c8506e... by Mark Purcell on 2012-03-18

Import patches-unapplied version 1:1.8.10.0~dfsg-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: bfba3c69aec5b4325790b32f068e803bfab5408e

New changelog entries:
  [ Tzafrir Cohen ]
  * New upstrean release.
  * Build-depend on sqlite3 as well (Closes: #531759).
  [ Paul Belanger ]
  * debian/patch/chan_iax2-detach-thread-on-non-stop-exit:
    - Dropped; merged upstream
  [ Mark Purcell ]
  * New Release:
    - Fixes "SHA-1 code is doesn't allow modification" (Closes: #643703)
    - Fixes "[CVE-2012-1183 - CVE-2012-1184] Asterisk: AST-2012-002 and
    AST-2012-003 flaws" (Closes: #664411)
    - Fixes "Placing calls on hold fails with some IP phones" (Closes: #632518)
    - Fixes "Pass the correct value to ast_timer_set_rate() for IAX2
    trunking." (Closes: #661974)
    - Fixes "Call quality on IAX significantly worse than SIP" (Closes: #481702)
    - Fixes "New upstream release: 1.8.2.2" (Closes: #610811)
    - Fixes "asterisk german number pronunciation" (Closes: #402991)
    - Fixes "Why using version 1.6.2.9 - it's not LTS" (Closes: #612147)
    - Fixes "SRTP/ZRTP support for Asterisk" (Closes: #577686)
    - Fixes "fails to register SIP channels on ARM" (Closes: #660240)
  * Fix "Planned gmime 2.4 removal" Updated Build-Depends: (Closes: #663998)
  * export CFLAGS LDFLAGS
    - Fixes "Hardening flags missing for menuselect" (Closes: #664086)
    - Fixes "enable hardening options" (Closes: #542741)

bfba3c6... by Tzafrir Cohen <email address hidden> on 2012-01-20

Import patches-unapplied version 1:1.8.8.2~dfsg-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 0b78e48cca4228a13e53a205ba15f7ac4290c15c

New changelog entries:
  * New upstream release, fixes AST-2012-001 (Closes: #656596).
  * Use CFLAGS and LDFLAGS from dpkg-buildflags (Closes: #653944).

0b78e48... by Tzafrir Cohen <email address hidden> on 2011-12-17

Import patches-unapplied version 1:1.8.8.0~dfsg-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: c723fe1ab8b9b214f6662f61f3f75fbf6d660a96

New changelog entries:
  [ Faidon Liambotis ]
  * Fix Breaks/Conflicts to contain the epoch.
  * Urgency high since this resulted in file conflicts when upgrading from
    stable.
  * Patch reenable-pri-optional: Backport a patch from upstream to fix
    several PRI features being compiled-out and hence disabled.
  * Bump libpri-dev dependency to 1.4.12; it is not strictly needed but extra
    functionality is enabled at build-time.
  [ Tzafrir Cohen ]
  * New upstream release. Closes: #651552.
    - Patch reenable-pri-optional dropped: included upstream.
  * Officially remove asterisk-h323:
    - Break older versions, as it did not have a versioned Depends before.
    - Remove the package.
  * Update watch file to only check for 1.8.x tarballs.