Package: asterisk / 1:1.8.13.1~dfsg1-3+deb7u3
Metadata
Package | Version | Patches format |
---|---|---|
asterisk | 1:1.8.13.1~dfsg1-3+deb7u3 | 3.0 (quilt) |
Patch series
view the series filePatch | File delta | Description |
---|---|---|
allow tilde destdir | (download) |
Makefile |
2 1 + 1 - 0 ! |
relax badshell tilde test |
hack multiple app voicemail | (download) |
Makefile.moddir_rules |
2 1 + 1 - 0 ! |
build multiple versions of app_voicemail.so |
safe_asterisk config | (download) |
contrib/scripts/safe_asterisk |
4 2 + 2 - 0 ! |
use /etc/default/settings for configuring safe_asterisk (vendor specific) |
safe_asterisk nobg | (download) |
contrib/scripts/safe_asterisk |
7 6 + 1 - 0 ! |
add an option to safe_asterisk so that it won't background. |
astgenkey security | (download) |
contrib/scripts/astgenkey |
4 4 + 0 - 0 ! |
astgenkey should generate a private key that is not world-readable |
reinclude_docs | (download) |
Makefile |
9 9 + 0 - 0 ! |
[patch] remove most of the contents of the doc dir in favor of the wiki content. |
sound_files | (download) |
sounds/sounds.xml |
2 0 + 2 - 0 ! |
avoid downloading extra sound files |
mpglib | (download) |
addons/mp3/MPGLIB_README |
39 39 + 0 - 0 ! |
mpglib code originally in asterisk-addons |
enable_addons | (download) |
addons/app_mysql.c |
1 0 + 1 - 0 ! |
enable modules formly from asterisk-addons |
no_uname | (download) |
bootstrap.sh |
4 0 + 4 - 0 ! |
--- |
kfreebsd | (download) |
channels/chan_oss.c |
2 1 + 1 - 0 ! |
--- |
menuselect_cflags | (download) |
Makefile |
4 3 + 1 - 0 ! |
pass build_cflgas and build_ldflags to menuselect Allow menuselect to get its set of CFLAGS and LDFLAGS through the environment of Make: make BUILD_CFLAGS="whatever" BUILD_LDFLAGS="whatever" Also keep menuselect from steping over them on its own. Commited to upstream trunk (asterisk r366002, menuselect r1033). Will be included in asterisk 11. |
ilbc_disable | (download) |
codecs/Makefile |
2 2 + 0 - 0 ! |
--- |
httpd_port | (download) |
main/http.c |
2 1 + 1 - 0 ! |
set httpd default port to 8088 Due to a regression in upstream's code (r353770) the port on which the Asterisk httpd listens on by default (if it does) has changed from 8088 to 8080. Set it back to 8088. Fixed in upstream branch 1.8. Will be included in 1.8.14 or so. No regression in 10 and trunk. |
AST 2012 012 | (download) |
README-SERIOUSLY.bestpractices.txt |
51 51 + 0 - 0 ! |
ast-2012-012: ami user shell access with externalivr |
AST 2012 013 | (download) |
channels/chan_iax2.c |
11 6 + 5 - 0 ! |
ast-2012-013: acl rules ignored during calls by some iax2 peers |
AST 2012 014 | (download) |
channels/chan_sip.c |
12 11 + 1 - 0 ! |
resolve crashes due to large stack allocations when using tcp |
AST 2012 015 | (download) |
apps/app_confbridge.c |
4 2 + 2 - 0 ! |
prevent exhaustion of system resources through exploitation of event cache CVE: CVE-2012-5977 |
AST 2013 002 | (download) |
main/http.c |
9 9 + 0 - 0 ! |
ast-2013-002: prevent denial of service in http server |
AST 2013 003 | (download) |
channels/chan_sip.c |
128 83 + 45 - 0 ! |
ast-2013-003: prevent username disclosure in sip channel driver Bug: https://issues.asterisk.org/jira/browse/ASTERISK-21013 |
bluetooth_bind | (download) |
addons/chan_mobile.c |
2 1 + 1 - 0 ! |
fix issue where chan_mobile fails to bind to first available port Bug: https://issues.asterisk.org/jira/browse/ASTERISK-16357 |
fix_xmpp_19532 | (download) |
res/res_jabber.c |
12 12 + 0 - 0 ! |
check for presence of buddy in info/dinfo handlers Bug: https://issues.asterisk.org/jira/browse/ASTERISK-19532 |
AST 2013 004 | (download) |
channels/chan_sip.c |
2 1 + 1 - 0 ! |
ast-2013-004: fix crash when handling ack on dialog that has no channel Bug: https://issues.asterisk.org/jira/browse/ASTERISK-21064 CVE: CVE-2013-5641 |
AST 2013 005 | (download) |
channels/chan_sip.c |
8 4 + 4 - 0 ! |
ast-2013-005: fix crash caused by invalid sdp Bug: https://issues.asterisk.org/jira/browse/ASTERISK-22007 CVE: CVE-2013-5642 |
AST 2013 006 | (download) |
apps/app_sms.c |
3 2 + 1 - 0 ! |
app_sms: bufferoverflow when receiving odd length 16 bit message |
ASTERISK 20658 | (download) |
funcs/func_realtime.c |
17 17 + 0 - 0 ! |
prevent crashes from occurring when reading from data sources with large values When reading configuration data from an Asterisk .conf file or when pulling data from an Asterisk RealTime backend, Asterisk was copying the data on the stack for manipulation. Unfortunately, it is possible to read configuration data or realtime data from some data source that provides a large blob of characters. This could potentially cause a crash via a stack overflow. This patch prevents large sets of data from being read from an ARA backend or from an Asterisk conf file. Reported by: wdoekes Tested by: wdoekes, mmichelson patches: * issueA20658_dont_process_overlong_config_lines.patch uploaded by wdoekes (license 5674) * issueA20658_func_realtime_limit.patch uploaded by wdoekes (license 5674) |
AST 2013 007 | (download) |
README-SERIOUSLY.bestpractices.txt |
24 24 + 0 - 0 ! |
inhibit execution of privilege escalating functions |