Commit Graph

281 Commits

Author SHA1 Message Date
sthen
12c1d6ee3a regen patch to avoid a cvs keyword 2011-07-20 07:06:00 +00:00
sthen
64aa216876 update to asterisk 1.8.5.0, chan_unistim parts from & ok ian@ 2011-07-12 19:54:39 +00:00
ajacoutot
422ec7e715 libiconv MODULE. 2011-07-07 01:19:02 +00:00
ajacoutot
ebc307bb8c Use the devel/gettext MODULE. 2011-07-06 21:09:55 +00:00
sthen
3e3639224e security update to asterisk 1.8.4.4: fix a case where invalid username
was distinguishable from incorrect password.
2011-06-29 01:15:04 +00:00
dcoppa
0b66f8d674 Update to pjsua-1.10.
tested and ok'd by Christopher Zimmermann (maintainer)
ok landry@
2011-06-28 07:03:46 +00:00
sthen
0de3a685c1 - add commented-out example settings for configuring a server behind nat
- be explicit in sample config that people should use strong secrets
2011-06-27 21:15:14 +00:00
sthen
c945a53851 sync WANTLIB and bump.
zap a few stray space-tabs while there.
2011-06-27 13:38:30 +00:00
sthen
2219c0a40e Your regularly scheduled security update to asterisk-1.8.4.3
AST-2011-008: If a remote user sends a SIP packet containing a null,
Asterisk assumes available data extends past the null to the
end of the packet when the buffer is actually truncated when
copied. This causes SIP header parsing to modify data past
the end of the buffer altering unrelated memory structures.
This vulnerability does not affect TCP/TLS connections.
-- Resolved in 1.6.2.18.1 and 1.8.4.3

AST-2011-009: A remote user sending a SIP packet containing a Contact header
with a missing left angle bracket (<) causes Asterisk to
access a null pointer.
-- Resolved in 1.8.4.3

AST-2011-010: A memory address was inadvertently transmitted over the
network via IAX2 via an option control frame and the remote party would try
to access it.
-- Resolved in 1.4.41.1, 1.6.2.18.1, and 1.8.4.3
2011-06-24 13:50:09 +00:00
sthen
b328f2f4ad Chase ffmpeg dep changes. Mostly from Brad ok dcoppa@, plus opencv from me. 2011-06-24 11:17:05 +00:00
sthen
eaa6026544 zap pointless use of $V 2011-06-16 21:11:56 +00:00
sthen
301812d800 sync WANTLIB; iaxclient picks up theora now that pkg-config version
comparison is fixed.
2011-06-13 08:22:44 +00:00
sthen
baac69906f build requires Tcl/Tk; set BUILD_DEPENDS appropriately.
remaining problem with -current pkg-config to be fixed separately.
2011-06-07 11:34:43 +00:00
jolan
36aaaa2b3f +asterisk-g729 2011-06-04 17:15:56 +00:00
jolan
7d416dc50c asterisk-g729, G.729a voice codec for Asterisk
thanks to ian@ and sthen@ for testing and reviewing
2011-06-04 17:14:58 +00:00
sthen
bac6270c37 Fix asterisk build on a clean box; there is a bogus dependency on libltdl
recorded in asterisk's menuselect system, knocking out ODBC build if not
present (though this is only done, afaict, due to a missing dependency
in a unixodbc package on some linux version), so add libltdl as a
BUILD_DEPENDS.

Doesn't affect the packages, other than -odbc wasn't built before
unless you had libltdl installed, so no bump.
2011-06-03 16:08:01 +00:00
sthen
3dd23e0aae SECURITY update to asterisk-1.8.4.2; CVE-2011-2216:
Null pointer deref in SIP if malformed Contact headers are present.
2011-06-02 20:10:01 +00:00
ajacoutot
f982995f2b Add a consistent header that substitutes FULLPKGNAME for the READMEs.
ok jasper@ sthen@
2011-06-02 13:41:36 +00:00
sthen
365584e13e Bugfix update of Asterisk to 1.8.4.1
- Fix compliance with RFC 3261 section 18.2.2. (aka Cisco phone fix)
- Resolve a change in IPv6 header parsing due to the Cisco phone fix issue.
- Resolve potential crash when using SIP TLS support.
- Improve reliability when using SIP TLS.
2011-05-25 20:11:02 +00:00
sthen
5cdba91893 update to 1.8.4 2011-05-11 15:07:14 +00:00
ian
e350730a78 Add 4.9 Release Song, update PKGNAME, ok sthen@ 2011-05-02 18:58:29 +00:00
sthen
61e7229715 Use correct AUTOCONF_VERSION, from Brad. 2011-05-01 20:14:21 +00:00
sthen
562c2bd78d - switch to correct 1.8.3.3 tarball now it's available (vs. 1.8.3.2+patchset)
- bump -main as some rcs id's built into files changed
2011-04-27 17:42:02 +00:00
sthen
d575b9875b SECURITY update to 1.8.3.3
- AST-2011-006, shell access via remote authenticated manager
sessions (logged-in manager users can execute shell commands via
the manager interface without having the "system" privilege that
should be required)

- AST-2011-005, DoS with remote unauthenticated sessions (add limits
to prevent unauthenticated users from tying up all available FDs for
the manager interface, SIP-over-TCP, Skinny and the built in HTTP
server).

(updating by way of upstream patch file, the full tar.gz isn't
available yet).
2011-04-21 22:28:40 +00:00
sthen
65d10f2a68 sync WANTLIB (re: ffmpeg update), from Brad 2011-04-18 23:11:53 +00:00
ajacoutot
a2d7a47da4 Fix build after gnutls update.
ok jasper@ landry@
2011-04-15 16:13:23 +00:00
ian
0bc7d2e694 Unbreak chan_unistim, bump. OK sthen@ (maintainer) 2011-04-09 19:16:51 +00:00
jakemsr
2f948b5fd0 more ports that need faad removed from WANTLIB after ffmpeg update,
as noted on ports@.
2011-03-29 23:22:17 +00:00
sthen
9abb8cd3fa use correct autoconf 2011-03-24 22:40:51 +00:00
ajacoutot
4f1d224b85 Make use of rcexec in rc_start().
ok sthen@ (maintainer)
2011-03-20 15:37:06 +00:00
sthen
6ddd29dca2 update to 1.8.3.2, rerelease due to a problem with one of the fixes in 1.8.3.1. 2011-03-17 21:38:09 +00:00
sthen
0cd58fd2e9 update to 1.8.3.1; fixes AST-2011-003 and AST-2011-004:
unchecked return codes (fdopen, fwrite) causing null pointer
deref / resource exhaustion.

http://downloads.asterisk.org/pub/security/AST-2011-003.html
http://downloads.asterisk.org/pub/security/AST-2011-004.html
2011-03-16 23:27:11 +00:00
sthen
ef1d411418 update spandsp to 0.0.6pre18, from Brad 2011-03-10 09:36:42 +00:00
ajacoutot
564c909458 Remove now uneeded redirection. 2011-03-09 18:51:48 +00:00
sthen
3e1e42650b update p5-asterisk to 1.01 and add example code (via MOD_CPAN_EXAMPLES) 2011-03-03 13:39:05 +00:00
sthen
31288ac0e2 bugfix update to 1.8.3 2011-03-02 13:28:24 +00:00
sthen
a75f35b7f4 SECURITY update to 1.8.2.4 fixes AST-2011-002 buffer overflow
Workaround: add "t38pt_udptl = no" to the general section in sip.conf
(chan_ooh323 is also affected but we don't build that).
2011-03-02 12:53:11 +00:00
sthen
249f7be968 update and patch appkonference to work with asterisk 1.8.
spotted by and diff ok with naddy@
2011-01-24 08:23:27 +00:00
sthen
9613b75ab6 SECURITY update (for real this time) to 1.8.2.2; no other changes.
"Due to a failed merge, Asterisk 1.8.2.1 which should have included
the security fix did not. Asterisk 1.8.2.2 contains the the changes
which should have been included in Asterisk 1.8.2.1."  ok ajacoutot@
2011-01-20 21:44:54 +00:00
sthen
9412bacbc5 Cherrypicked diff from svn; fix the internal implementation of htonll/ntohll
which was incorrect and would cause IAX interoperation to break. ok jasper@
2011-01-20 16:26:26 +00:00
sthen
aef236cbb8 SECURITY update to asterisk 1.8.2.1, fixes AST-2011-001 "an issue
when forming an outgoing SIP request while in pedantic mode, which
can cause a stack buffer to be made to overflow if supplied with
carefully crafted caller ID information"

http://downloads.asterisk.org/pub/security/AST-2011-001.html

This is also a major version update to the long-term support
1.8 branch, previous versions of this diff have been tested by
various ports@ readers, thanks for testing.

Please review /usr/local/share/doc/asterisk/UPGRADE.txt
(also note that memory use has increased).

ok ajacoutot@ jasper@
2011-01-19 11:25:16 +00:00
sebastia
d5f0abdb34 Update to new Tcl layout.
OK landry@ stu@
2011-01-05 18:00:10 +00:00
fgsch
e1d81e418e Add rc script taken from the 1.8 update diff sent to ports@ by sthen@.
sthen@ ok.
2011-01-04 22:35:46 +00:00
dcoppa
e2a36dd1fb Bugfix update to pjsua-1.8.10 2010-12-22 14:58:53 +00:00
bluhm
b65da41fe1 - update p5-Net-SIP to 0.62
- spacing
2010-12-12 22:04:33 +00:00
ajacoutot
df4e1203e4 Bump after recent cpan.port.mk change.
ok jasper@
(final commit)
2010-12-03 11:46:46 +00:00
espie
15196452e1 default db-* for db/v4 is incorrect, set PKGSPEC=db->=4,<5, bump packages
with erroneous depends.
2010-11-26 14:44:27 +00:00
espie
fbc20d9b54 missed a few depends 2010-11-22 09:38:08 +00:00
espie
811d94d9d6 new depends 2010-11-20 19:56:47 +00:00
sthen
462a21e673 update Asterisk to 1.6.2.14 2010-11-16 21:58:52 +00:00