Package: asterisk; Maintainer for asterisk is Debian VoIP Team <pkg-voip-maintainers@lists.alioth.debian.org>; Source for asterisk is src:asterisk (PTS, buildd, popcon).
Reported by: Tzafrir Cohen <tzafrir@cohens.org.il>
Date: Tue, 22 Feb 2011 12:39:15 UTC
Severity: grave
Tags: patch, security, upstream
Found in version asterisk/1:1.6.2.9-2+squeeze1
Fixed in versions asterisk/1:1.4.21.2~dfsg-3+lenny2.1, asterisk/1:1.6.2.9-2+squeeze2, asterisk/1:1.8.3.3-1
Done: Tzafrir Cohen <tzafrir@debian.org>
Bug is archived. No further changes may be made.
View this report as an mbox folder, status mbox, maintainer mbox
Report forwarded
to debian-bugs-dist@lists.debian.org, Debian VoIP Team <pkg-voip-maintainers@lists.alioth.debian.org>:
Bug#614580; Package asterisk.
(Tue, 22 Feb 2011 12:39:18 GMT) (full text, mbox, link).
Acknowledgement sent
to Tzafrir Cohen <tzafrir@cohens.org.il>:
New Bug report received and forwarded. Copy sent to Debian VoIP Team <pkg-voip-maintainers@lists.alioth.debian.org>.
(Tue, 22 Feb 2011 12:39:18 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: asterisk Version: 1:1.6.2.9-2+squeeze1 Justification: user security hole Severity: grave Tags: security patch upstream The Asterisk project has reported security advisory ASA-2011-002 http://downloads.asterisk.org/pub/security/AST-2011-002.html (No CVE ATM) "When decoding UDPTL packets, multiple stack and heap based arrays can be made to overflow by specially crafted packets. Systems doing T.38 pass through or termination are vulnerable." Patches were already submitted to the respective branches in the pkg-voip SVN repo: http://svn.debian.org/viewsvn/pkg-voip?view=rev&revision=8797 - Squeeze http://svn.debian.org/viewsvn/pkg-voip?view=rev&revision=8800 - Lenny Workaround: As a workaround, in case the patch has not yet been applied, you can disable the T.38 functionality (versions in Debian stable / oldstable only have T.38 passthrough capabilities). * In chan_sip this is only enabled if 't38pt_udptl' wasenabled for a any specific peer/user. * chan_ooh423 (only in stable, not in oldstable. Only needed if you installed asterisk-ooh423) needs to be disabled altogether. e.g. set in modules.conf in the section [modules]: noload => chan_ooh423.so -- Tzafrir Cohen | tzafrir@jabber.org | VIM is http://tzafrir.org.il | | a Mutt's tzafrir@cohens.org.il | | best tzafrir@debian.org | | friend
Information forwarded
to debian-bugs-dist@lists.debian.org, Debian VoIP Team <pkg-voip-maintainers@lists.alioth.debian.org>:
Bug#614580; Package asterisk.
(Sat, 12 Mar 2011 12:45:06 GMT) (full text, mbox, link).
Acknowledgement sent
to Luciano Bello <luciano@debian.org>:
Extra info received and forwarded to list. Copy sent to Debian VoIP Team <pkg-voip-maintainers@lists.alioth.debian.org>.
(Sat, 12 Mar 2011 12:45:06 GMT) (full text, mbox, link).
Message #10 received at 614580@bugs.debian.org (full text, mbox, reply):
Please, use CVE-2011-1147 -luciano
Added tag(s) pending.
Request was from Tzafrir Cohen <tzafrir@debian.org>
to control@bugs.debian.org.
(Sat, 26 Mar 2011 13:03:08 GMT) (full text, mbox, link).
Reply sent
to Tzafrir Cohen <tzafrir@debian.org>:
You have taken responsibility.
(Mon, 25 Apr 2011 13:57:07 GMT) (full text, mbox, link).
Notification sent
to Tzafrir Cohen <tzafrir@cohens.org.il>:
Bug acknowledged by developer.
(Mon, 25 Apr 2011 13:57:07 GMT) (full text, mbox, link).
Message #17 received at 614580-close@bugs.debian.org (full text, mbox, reply):
Source: asterisk Source-Version: 1:1.4.21.2~dfsg-3+lenny2.1 We believe that the bug you reported is fixed in the latest version of asterisk, which is due to be installed in the Debian FTP archive: asterisk-config_1.4.21.2~dfsg-3+lenny2.1_all.deb to main/a/asterisk/asterisk-config_1.4.21.2~dfsg-3+lenny2.1_all.deb asterisk-dbg_1.4.21.2~dfsg-3+lenny2.1_amd64.deb to main/a/asterisk/asterisk-dbg_1.4.21.2~dfsg-3+lenny2.1_amd64.deb asterisk-dev_1.4.21.2~dfsg-3+lenny2.1_all.deb to main/a/asterisk/asterisk-dev_1.4.21.2~dfsg-3+lenny2.1_all.deb asterisk-doc_1.4.21.2~dfsg-3+lenny2.1_all.deb to main/a/asterisk/asterisk-doc_1.4.21.2~dfsg-3+lenny2.1_all.deb asterisk-h423_1.4.21.2~dfsg-3+lenny2.1_amd64.deb to main/a/asterisk/asterisk-h423_1.4.21.2~dfsg-3+lenny2.1_amd64.deb asterisk-sounds-main_1.4.21.2~dfsg-3+lenny2.1_all.deb to main/a/asterisk/asterisk-sounds-main_1.4.21.2~dfsg-3+lenny2.1_all.deb asterisk_1.4.21.2~dfsg-3+lenny2.1.diff.gz to main/a/asterisk/asterisk_1.4.21.2~dfsg-3+lenny2.1.diff.gz asterisk_1.4.21.2~dfsg-3+lenny2.1.dsc to main/a/asterisk/asterisk_1.4.21.2~dfsg-3+lenny2.1.dsc asterisk_1.4.21.2~dfsg-3+lenny2.1_amd64.deb to main/a/asterisk/asterisk_1.4.21.2~dfsg-3+lenny2.1_amd64.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 614580@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Tzafrir Cohen <tzafrir@debian.org> (supplier of updated asterisk package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmaster@debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 23 Apr 2011 17:30:13 +0300 Source: asterisk Binary: asterisk asterisk-h423 asterisk-doc asterisk-dev asterisk-dbg asterisk-sounds-main asterisk-config Architecture: source all amd64 Version: 1:1.4.21.2~dfsg-3+lenny2.1 Distribution: oldstable-security Urgency: high Maintainer: Debian VoIP Team <pkg-voip-maintainers@lists.alioth.debian.org> Changed-By: Tzafrir Cohen <tzafrir@debian.org> Description: asterisk - Open Source Private Branch Exchange (PBX) asterisk-config - Configuration files for Asterisk asterisk-dbg - Debugging symbols for Asterisk asterisk-dev - Development files for Asterisk asterisk-doc - Source code documentation for Asterisk asterisk-h423 - H.323 protocol support for Asterisk asterisk-sounds-main - Core Sound files for Asterisk (English) Closes: 614580 618790 Changes: asterisk (1:1.4.21.2~dfsg-3+lenny2.1) oldstable-security; urgency=high . * AST-2011-002 (CVE-2011-1147): Multiple crash vulnerabilities in UDPTL code (Closes: #614580). * Patch AST-2011-005 (CVE-2011-1507): Resource exhaustion in Asterisk Manager Interface. * Patch AST-2011-005-p2: Resource exhaustion in chan_skinny and AJAM - second part of the above (Closes: #618790). * Patches AST-2011-003, manager_manager_bugfix_reload - its pre-requirements. * My new @debian.org address Checksums-Sha1: 013a870a95cc889ab06cba4bb105fb087191e3b3 1987 asterisk_1.4.21.2~dfsg-3+lenny2.1.dsc 79c9c67ef081925b0871b3faa7ef71b937f29453 158875 asterisk_1.4.21.2~dfsg-3+lenny2.1.diff.gz 88921b26377bd4a7361ce25e4759a9e694b5d921 33061018 asterisk-doc_1.4.21.2~dfsg-3+lenny2.1_all.deb 977eecd305ae101f668b3de7614f6d646a34d46d 429462 asterisk-dev_1.4.21.2~dfsg-3+lenny2.1_all.deb 413a2b27f194284c1739b54adb8858b8104ef30e 1899998 asterisk-sounds-main_1.4.21.2~dfsg-3+lenny2.1_all.deb ae19d6b2662509d0d04132f73f18c0eb8dae59bc 485238 asterisk-config_1.4.21.2~dfsg-3+lenny2.1_all.deb e0e432172d981757455875277c1b4a19a494d0c2 2624058 asterisk_1.4.21.2~dfsg-3+lenny2.1_amd64.deb db74c77131fe67d4b72ce1b25d77e8a21de9a235 398032 asterisk-h423_1.4.21.2~dfsg-3+lenny2.1_amd64.deb fcd10202cde44b4b8bb7f05e83f088cf7275ec16 13153860 asterisk-dbg_1.4.21.2~dfsg-3+lenny2.1_amd64.deb Checksums-Sha256: e1c268526259c7a3650ec82c2e79313a81647eea339a69878cab48654cb6ec1a 1987 asterisk_1.4.21.2~dfsg-3+lenny2.1.dsc b8ad405081e6cf3673ca204e5befb57f882d3d546057f135c4f7412c5510fc2c 158875 asterisk_1.4.21.2~dfsg-3+lenny2.1.diff.gz 2468f721bbbef008e221566e7310594da2644799819c7ff6dda3b70cae28e3b0 33061018 asterisk-doc_1.4.21.2~dfsg-3+lenny2.1_all.deb fc5c4a61f2e9557418da600f8d70afab4a802ed076871c5a0b6d8c52ceb95bb0 429462 asterisk-dev_1.4.21.2~dfsg-3+lenny2.1_all.deb a70eccd14b29292074e4f6811b7836ce47153f4e0de216fb2d741b54cc8c6dc5 1899998 asterisk-sounds-main_1.4.21.2~dfsg-3+lenny2.1_all.deb 5f66bb19bdcc08a2e3be8c9af9a0366874fb8c9e460d467e687e537e5f3dfa0f 485238 asterisk-config_1.4.21.2~dfsg-3+lenny2.1_all.deb ed97a47efd6f2a00828e8aa8a0579491a87efef9f240096e378507640aebeafd 2624058 asterisk_1.4.21.2~dfsg-3+lenny2.1_amd64.deb f7d636c12362f0710ca5b65b41758bb69eb49068a33335f7b9c4f1b5b5016cc1 398032 asterisk-h423_1.4.21.2~dfsg-3+lenny2.1_amd64.deb fb621d58d6929305c48a943a04e45e9710661f83c0873d74cb98de1172c3a37f 13153860 asterisk-dbg_1.4.21.2~dfsg-3+lenny2.1_amd64.deb Files: d601c21bf99d040db1844e0fc5973165 1987 comm optional asterisk_1.4.21.2~dfsg-3+lenny2.1.dsc 7ed6ad7c24b9c4f60bdaef17541282a3 158875 comm optional asterisk_1.4.21.2~dfsg-3+lenny2.1.diff.gz 8500e5812b9cd245b23b4aa2f26e4688 33061018 doc extra asterisk-doc_1.4.21.2~dfsg-3+lenny2.1_all.deb 40ee618fc306b28d5c2b3939bf39b905 429462 devel extra asterisk-dev_1.4.21.2~dfsg-3+lenny2.1_all.deb 91bff5642ad70afd77f9efb6794ca945 1899998 comm optional asterisk-sounds-main_1.4.21.2~dfsg-3+lenny2.1_all.deb 6c3e65c2189a3f00e11e77d4655f151e 485238 comm optional asterisk-config_1.4.21.2~dfsg-3+lenny2.1_all.deb 551723b5b728de88719fb9467c60a4cf 2624058 comm optional asterisk_1.4.21.2~dfsg-3+lenny2.1_amd64.deb 08bc009255b340490e348ebed894283c 398032 comm optional asterisk-h423_1.4.21.2~dfsg-3+lenny2.1_amd64.deb 02e7abe10b4427a9f2f35cc4ce68e7ab 13153860 devel extra asterisk-dbg_1.4.21.2~dfsg-3+lenny2.1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAk2zAtYACgkQxArWdkN9MoshVgCdFiLts1AEOhnGYf/Fmc6k5PcT HlYAn25m+xPpxZCBKQEA0S8qWxeFk7aU =wN6s -----END PGP SIGNATURE-----
Reply sent
to Tzafrir Cohen <tzafrir@debian.org>:
You have taken responsibility.
(Mon, 25 Apr 2011 13:57:09 GMT) (full text, mbox, link).
Notification sent
to Tzafrir Cohen <tzafrir@cohens.org.il>:
Bug acknowledged by developer.
(Mon, 25 Apr 2011 13:57:09 GMT) (full text, mbox, link).
Message #22 received at 614580-close@bugs.debian.org (full text, mbox, reply):
Source: asterisk Source-Version: 1:1.6.2.9-2+squeeze2 We believe that the bug you reported is fixed in the latest version of asterisk, which is due to be installed in the Debian FTP archive: asterisk-config_1.6.2.9-2+squeeze2_all.deb to main/a/asterisk/asterisk-config_1.6.2.9-2+squeeze2_all.deb asterisk-dbg_1.6.2.9-2+squeeze2_amd64.deb to main/a/asterisk/asterisk-dbg_1.6.2.9-2+squeeze2_amd64.deb asterisk-dev_1.6.2.9-2+squeeze2_all.deb to main/a/asterisk/asterisk-dev_1.6.2.9-2+squeeze2_all.deb asterisk-doc_1.6.2.9-2+squeeze2_all.deb to main/a/asterisk/asterisk-doc_1.6.2.9-2+squeeze2_all.deb asterisk-h423_1.6.2.9-2+squeeze2_amd64.deb to main/a/asterisk/asterisk-h423_1.6.2.9-2+squeeze2_amd64.deb asterisk-sounds-main_1.6.2.9-2+squeeze2_all.deb to main/a/asterisk/asterisk-sounds-main_1.6.2.9-2+squeeze2_all.deb asterisk_1.6.2.9-2+squeeze2.debian.tar.gz to main/a/asterisk/asterisk_1.6.2.9-2+squeeze2.debian.tar.gz asterisk_1.6.2.9-2+squeeze2.dsc to main/a/asterisk/asterisk_1.6.2.9-2+squeeze2.dsc asterisk_1.6.2.9-2+squeeze2_amd64.deb to main/a/asterisk/asterisk_1.6.2.9-2+squeeze2_amd64.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 614580@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Tzafrir Cohen <tzafrir@debian.org> (supplier of updated asterisk package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmaster@debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 23 Apr 2011 17:35:01 +0300 Source: asterisk Binary: asterisk asterisk-h423 asterisk-doc asterisk-dev asterisk-dbg asterisk-sounds-main asterisk-config Architecture: source all amd64 Version: 1:1.6.2.9-2+squeeze2 Distribution: stable-security Urgency: high Maintainer: Debian VoIP Team <pkg-voip-maintainers@lists.alioth.debian.org> Changed-By: Tzafrir Cohen <tzafrir@debian.org> Description: asterisk - Open Source Private Branch Exchange (PBX) asterisk-config - Configuration files for Asterisk asterisk-dbg - Debugging symbols for Asterisk asterisk-dev - Development files for Asterisk asterisk-doc - Source code documentation for Asterisk asterisk-h423 - H.323 protocol support for Asterisk asterisk-sounds-main - Core Sound files for Asterisk (English) Closes: 614580 618790 618791 623775 Changes: asterisk (1:1.6.2.9-2+squeeze2) stable-security; urgency=high . * Patch AST-2011-002 (CVE-2011-1147): Multiple crash vulnerabilities in UDPTL code (Closes: #614580). * Patch AST-2011-005 (CVE-2011-1507): Resource exhaustion in Asterisk Manager Interface. * Patch AST-2011-005-p2: Resource exhaustion in chan_skinny and AJAM - second part of the above (Closes: #618790). * Patch AST-2011-006: Check for "system" privilege in the manager interface (Closes: #623775). * Patches AST-2011-003, manager_manager_bugfix_reload - its pre-requirements. * Patch AST-2011-004: Remote crash vulnerability in TCP/TLS server (Closes: #618791). Checksums-Sha1: 76fff6bf31fbfef6244d210b4f4d2e5ccec86393 2172 asterisk_1.6.2.9-2+squeeze2.dsc 0218e418266fbaa403aaf7abc09be5b3b1262ffd 84959 asterisk_1.6.2.9-2+squeeze2.debian.tar.gz 50e1ccdf02d5c5ace5faf79085b187b4c512a446 1703746 asterisk-doc_1.6.2.9-2+squeeze2_all.deb 0e7f2f020ecf990b56338fa0d56cad8d66900295 635482 asterisk-dev_1.6.2.9-2+squeeze2_all.deb 3ad2a07e1645c9cca0d4403e47ca224c0a0bfadd 2186840 asterisk-sounds-main_1.6.2.9-2+squeeze2_all.deb 3df19a7623188b6658d075fdf2442d53e2e68285 716440 asterisk-config_1.6.2.9-2+squeeze2_all.deb 876a08fc6fde714374ed4ee6a680fbb34cfb0c87 3599066 asterisk_1.6.2.9-2+squeeze2_amd64.deb baec5ac5b4c129012251d906dfeb3ca177b999fa 533072 asterisk-h423_1.6.2.9-2+squeeze2_amd64.deb 344add77edab899661b77c6e415af350f63d08ed 20322810 asterisk-dbg_1.6.2.9-2+squeeze2_amd64.deb Checksums-Sha256: 55e27b3ef2993a8b38ac44b4fde2e51b09d5cbff309a3420428877a05c37755e 2172 asterisk_1.6.2.9-2+squeeze2.dsc 06992a32c513aad2d42553c8a7fb912b001886013c958796000a9c2a83d1aedc 84959 asterisk_1.6.2.9-2+squeeze2.debian.tar.gz c7153f77d2ab488353823df1e5b06b82fc92a190e1f848c4d309a057d6ea800e 1703746 asterisk-doc_1.6.2.9-2+squeeze2_all.deb 49ca880e4dcb8c6c4108f063c5c3caea222fd91480661b19f5e9d28e93f230a6 635482 asterisk-dev_1.6.2.9-2+squeeze2_all.deb 784e56af9618f6c9d355e1995738591ed691d8a1d2595abc11033e2da7ab7dca 2186840 asterisk-sounds-main_1.6.2.9-2+squeeze2_all.deb c856a4f0b93a34ff586140c9a5a7bf6ab435d31011be9ab2c1ec6ad65cec9777 716440 asterisk-config_1.6.2.9-2+squeeze2_all.deb 613f7b2a0ebdaebb995ad9045b84a3cbd8e428930b5e4b207ec07fa432de6d13 3599066 asterisk_1.6.2.9-2+squeeze2_amd64.deb 9d0e0a15c47c8476a9cc81b88daa057b6b462e217a1765157581b35fba116255 533072 asterisk-h423_1.6.2.9-2+squeeze2_amd64.deb 65cebb0efbfb7abe536e42c3586b1bb1fe354f80785ad659ad6d84a81e3cb47c 20322810 asterisk-dbg_1.6.2.9-2+squeeze2_amd64.deb Files: 515a62f82baad1d0af6ae5dadae7294e 2172 comm optional asterisk_1.6.2.9-2+squeeze2.dsc 8697a1a846809424305cae4e3a36ff2e 84959 comm optional asterisk_1.6.2.9-2+squeeze2.debian.tar.gz bf423038f53ca9fd37b7c611d7c96050 1703746 doc extra asterisk-doc_1.6.2.9-2+squeeze2_all.deb 87eff4e2170c9cbf210aa87351424033 635482 devel extra asterisk-dev_1.6.2.9-2+squeeze2_all.deb 2bb17d91e2029ae25593e3d5e3999843 2186840 comm optional asterisk-sounds-main_1.6.2.9-2+squeeze2_all.deb fed9b9dac88607b781f62a7efde07d36 716440 comm optional asterisk-config_1.6.2.9-2+squeeze2_all.deb c44625222c21809662549a6593844a46 3599066 comm optional asterisk_1.6.2.9-2+squeeze2_amd64.deb c551867c1addad0a21557a9725041ab1 533072 comm optional asterisk-h423_1.6.2.9-2+squeeze2_amd64.deb fb1e95d63f01fef96d41edeb4f14a399 20322810 debug extra asterisk-dbg_1.6.2.9-2+squeeze2_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAk2zAlwACgkQxArWdkN9MoubTwCgyklnDyAEoH1XXQ3/byDgSJU7 6P4AmQGv2O0cmOxDoUuBypgKOKl9TV9W =lUc8 -----END PGP SIGNATURE-----
Reply sent
to Tzafrir Cohen <tzafrir@debian.org>:
You have taken responsibility.
(Mon, 25 Apr 2011 22:21:10 GMT) (full text, mbox, link).
Notification sent
to Tzafrir Cohen <tzafrir@cohens.org.il>:
Bug acknowledged by developer.
(Mon, 25 Apr 2011 22:21:10 GMT) (full text, mbox, link).
Message #27 received at 614580-close@bugs.debian.org (full text, mbox, reply):
Source: asterisk Source-Version: 1:1.8.3.3-1 We believe that the bug you reported is fixed in the latest version of asterisk, which is due to be installed in the Debian FTP archive: asterisk-config_1.8.3.3-1_all.deb to main/a/asterisk/asterisk-config_1.8.3.3-1_all.deb asterisk-dahdi_1.8.3.3-1_amd64.deb to main/a/asterisk/asterisk-dahdi_1.8.3.3-1_amd64.deb asterisk-dbg_1.8.3.3-1_amd64.deb to main/a/asterisk/asterisk-dbg_1.8.3.3-1_amd64.deb asterisk-dev_1.8.3.3-1_all.deb to main/a/asterisk/asterisk-dev_1.8.3.3-1_all.deb asterisk-doc_1.8.3.3-1_all.deb to main/a/asterisk/asterisk-doc_1.8.3.3-1_all.deb asterisk-h423_1.8.3.3-1_amd64.deb to main/a/asterisk/asterisk-h423_1.8.3.3-1_amd64.deb asterisk-mobile_1.8.3.3-1_amd64.deb to main/a/asterisk/asterisk-mobile_1.8.3.3-1_amd64.deb asterisk-modules_1.8.3.3-1_amd64.deb to main/a/asterisk/asterisk-modules_1.8.3.3-1_amd64.deb asterisk-mp3_1.8.3.3-1_amd64.deb to main/a/asterisk/asterisk-mp3_1.8.3.3-1_amd64.deb asterisk-mysql_1.8.3.3-1_amd64.deb to main/a/asterisk/asterisk-mysql_1.8.3.3-1_amd64.deb asterisk-ooh423_1.8.3.3-1_amd64.deb to main/a/asterisk/asterisk-ooh423_1.8.3.3-1_amd64.deb asterisk-voicemail-imapstorage_1.8.3.3-1_amd64.deb to main/a/asterisk/asterisk-voicemail-imapstorage_1.8.3.3-1_amd64.deb asterisk-voicemail-odbcstorage_1.8.3.3-1_amd64.deb to main/a/asterisk/asterisk-voicemail-odbcstorage_1.8.3.3-1_amd64.deb asterisk-voicemail_1.8.3.3-1_amd64.deb to main/a/asterisk/asterisk-voicemail_1.8.3.3-1_amd64.deb asterisk_1.8.3.3-1.debian.tar.gz to main/a/asterisk/asterisk_1.8.3.3-1.debian.tar.gz asterisk_1.8.3.3-1.dsc to main/a/asterisk/asterisk_1.8.3.3-1.dsc asterisk_1.8.3.3-1_amd64.deb to main/a/asterisk/asterisk_1.8.3.3-1_amd64.deb asterisk_1.8.3.3.orig.tar.gz to main/a/asterisk/asterisk_1.8.3.3.orig.tar.gz A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 614580@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Tzafrir Cohen <tzafrir@debian.org> (supplier of updated asterisk package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmaster@debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Mon, 25 Apr 2011 21:46:51 +0300 Source: asterisk Binary: asterisk asterisk-modules asterisk-h423 asterisk-dahdi asterisk-voicemail asterisk-voicemail-imapstorage asterisk-voicemail-odbcstorage asterisk-ooh423 asterisk-mp3 asterisk-mysql asterisk-mobile asterisk-doc asterisk-dev asterisk-dbg asterisk-config Architecture: source all amd64 Version: 1:1.8.3.3-1 Distribution: unstable Urgency: high Maintainer: Debian VoIP Team <pkg-voip-maintainers@lists.alioth.debian.org> Changed-By: Tzafrir Cohen <tzafrir@debian.org> Description: asterisk - Open Source Private Branch Exchange (PBX) asterisk-config - Configuration files for Asterisk asterisk-dahdi - DAHDI devices support for the Asterisk PBX asterisk-dbg - Debugging symbols for Asterisk asterisk-dev - Development files for Asterisk asterisk-doc - Source code documentation for Asterisk asterisk-h423 - H.323 protocol support for the Asterisk PBX asterisk-mobile - Bluetooth phone support for the Asterisk PBX asterisk-modules - loadable modules for the Asterisk PBX asterisk-mp3 - MP3 playback support for the Asterisk PBX (DUMMY) asterisk-mysql - MySQL database protocol support for the Asterisk PBX asterisk-ooh423 - H.323 protocol support for the Asterisk PBX - ooH323c asterisk-voicemail - simple voicemail support for the Asterisk PBX asterisk-voicemail-imapstorage - IMAP voicemail storage support for the Asterisk PBX asterisk-voicemail-odbcstorage - ODBC voicemail storage support for the Asterisk PBX Closes: 531551 549054 590588 610487 614580 618790 618791 623775 Changes: asterisk (1:1.8.3.3-1) unstable; urgency=high . [ Tzafrir Cohen ] * Switching to branch 1.8 (Closes: #610487, #614580, #618790, #618791, #623775). * Patch parser-mangles-include dropped: merged upstream. * Patch dahdi-fxsks-hookstate dropped: merged upstream. * Patch dahdi_ptmp_nt dropped: silly hack no longer needed. * Patch dahdi_pri_debug_spannums dropped: merged upstream. * Patch moh_datadir dropped: merged upstream. * Patch settings_show_dirs dropped: merged upstream. * Patch man_hyphen dropped: merged upstream. * Patch typos dropped: merged upstream. * Patch rtcp_cli_fix dropped: merged upstream. * Sound files: version 1.4.20 * Separate sub-package asterisk-modules to avoid multiarch issues. * Extra sub-package asterisk-dahdi for the dahdi modules (Closes: #590588). * As of 1.8.1, AST.pdf and AST.txt are generated from the wiki. - And thus no need for rubber at build time (Closes: #531551). * Separate sub-packages for voicemail backends: - asterisk-voicemail{,-{imap,odbc}storage} - And rename the modules accordingly. * asterisk-mysql, asterisk-mobile, asterisk-mp3, asterisk-ooh423: - asterisk-addons was merged into Asterisk. - Patch enable_addons: do build those modules. - Also app_saycountpl, which will go into the mian package. - Patch mpglib: mpglib from asterisk-addons, originally. * Patch gmime-2.4: fixes building with gmime 2.4 (Closes: #549054). - Requires re-generating configure script. * Patch openssl10: Fix detection of openssl 1.0. * Patch no_ssl2: Don't require client-side SSL2 support. * include menuselect.makeopts in the docs directory - let us know what modules were not built. * Bump Standards version to 3.9.2.0 (no change needed). * Upstream prefers chan_ooh423 to chan_h423. Suggest asterisk-ooh423. * Drop asterisk-sounds-main: we already have that functionality the asterisk-core-sounds packages. * Recommend a moh (music-on-hold) package to have music played on hold. . [ Faidon Liambotis ] * Switch to the "3.0 (quilt)" package source format. . [ Paul Belanger ] * Depend on libneon27-dev and libical-dev for calendar support. * Depend on libsrtp0-dev for SRTP support. * When compiling with DEB_BUILD_OPTIONS="debug" enable native Asterisk debugging tools. Specifically DONT_OPTIMIZE, DEBUG_THREADS and --enable-dev-mode. * Regardless of which asterisk-voicemail-* is installed (each package conflicts on each other), the name of the module is now app_voicemail.so. * Fix a bug with app_voicemail-*.exports.in not being copied properly. Checksums-Sha1: 79eeb272bbe58858858a209d2c4b1a8766f4ec1c 2395 asterisk_1.8.3.3-1.dsc af9e76c2ef96467869947ca1b07214c2abb25687 26871276 asterisk_1.8.3.3.orig.tar.gz 8b73624f95692ee6941fd1f600d82ef81e1200a7 94516 asterisk_1.8.3.3-1.debian.tar.gz 3761d38dcd1e07ec3a3602764d719b7e2aaeac09 4130144 asterisk-doc_1.8.3.3-1_all.deb b19ea198417b34e4202b283971eab6bddf680d14 773290 asterisk-dev_1.8.3.3-1_all.deb 9acfd8973449d9bea79228b57488429e5866a542 824252 asterisk-config_1.8.3.3-1_all.deb 69209628c2dcbc681601a46831083a6c9f93e6ff 1552706 asterisk_1.8.3.3-1_amd64.deb b29d00cc22aff010f46d76a71e2f5db1ac5fe6bd 2616088 asterisk-modules_1.8.3.3-1_amd64.deb 086b308995de420810f05a4a63ae482337e3a670 599314 asterisk-h423_1.8.3.3-1_amd64.deb fbec7d8b619cbf3fe8d77d8c60c05de997e1bc07 719964 asterisk-dahdi_1.8.3.3-1_amd64.deb c5592dfc889f06545fa15689ae8947d104f06726 512328 asterisk-voicemail_1.8.3.3-1_amd64.deb 6bd94903a07e49cfc958c821d46a1bd0a516ca2e 527884 asterisk-voicemail-imapstorage_1.8.3.3-1_amd64.deb 67ec6f5bada0dfd4baee1b140794c53b3ea83a02 518440 asterisk-voicemail-odbcstorage_1.8.3.3-1_amd64.deb 88854c14a5459ed8a6682cacd9c859aebff38f35 853722 asterisk-ooh423_1.8.3.3-1_amd64.deb 093849e59d447f62a66017d621bc0cd2b6cb3b92 456404 asterisk-mp3_1.8.3.3-1_amd64.deb 43314a1d91a5725c377057811fa719b79a91386d 481508 asterisk-mysql_1.8.3.3-1_amd64.deb 99909077dc2c798ed8344cfee808217ee2a2c0d1 469840 asterisk-mobile_1.8.3.3-1_amd64.deb d80fd31c794141ffc8a5c82c9294a84c9daeea87 28740422 asterisk-dbg_1.8.3.3-1_amd64.deb Checksums-Sha256: d5ce9a2db8ff97a5f83b66771fb11240e2af02df3effbfae00eed862c4667995 2395 asterisk_1.8.3.3-1.dsc 899399a5c5f089dc793d033f670f6c14e13447cf0830d9093d82873f4892da9b 26871276 asterisk_1.8.3.3.orig.tar.gz b4c7e6bbbaa35e745f85b22e2a1ea88ba08c4537eef9b1b95a2e7eac75a98ad4 94516 asterisk_1.8.3.3-1.debian.tar.gz a2f38933a2cc0ae638d2346c741b9f7cff433832662d9812d1ab56e0588d5c46 4130144 asterisk-doc_1.8.3.3-1_all.deb 62acbcaa0c08c644679aa1bac7474ab76c636f3fb3de3fbbe9b52faf27678ca9 773290 asterisk-dev_1.8.3.3-1_all.deb 358e61b5be735b3f2500eb6354dffae8fad0818021e771898ee90f019afb2e12 824252 asterisk-config_1.8.3.3-1_all.deb 40a2ca7c5dcebc10a3cf5e618d000535f0e7c0bdb536ca2255b510e03dfbe434 1552706 asterisk_1.8.3.3-1_amd64.deb bf2492b3d1685d7fd41a4c6a30e9033bf1b0d8cea67aeaae073332f811c2dde7 2616088 asterisk-modules_1.8.3.3-1_amd64.deb da018879fccabf90f0383c90b3707ea52c5e6a72d8e2a7f790c7e58d67eeab25 599314 asterisk-h423_1.8.3.3-1_amd64.deb c0457a3f8562a5e74a0c5914cfc5ce04b8fdc5ec43ac9f0395b6312b605798a1 719964 asterisk-dahdi_1.8.3.3-1_amd64.deb 65f00a27ec5887a9574de96b83bb211b828e350e18e2c6687aaad23367b71b16 512328 asterisk-voicemail_1.8.3.3-1_amd64.deb 0eb920e51e5397e37a9d2d885005355dceac44fa9f872c819c182044bdc8a098 527884 asterisk-voicemail-imapstorage_1.8.3.3-1_amd64.deb a595bda7a1b06d50a808d63ab84dfa228dc53666923509f6f10b3349525f2e41 518440 asterisk-voicemail-odbcstorage_1.8.3.3-1_amd64.deb b284ea45bc4f44dec3803ea0d785cea3816f7dc7188d7cc520b78c1c76508207 853722 asterisk-ooh423_1.8.3.3-1_amd64.deb 21895d9f68222f97143cbac867d8f043e30e7968f4e03f597631aeecde34e50c 456404 asterisk-mp3_1.8.3.3-1_amd64.deb dbe2ac8d85a17797677b11f06bd59c7d7fce4d10e335b4890b2ee0a98624301e 481508 asterisk-mysql_1.8.3.3-1_amd64.deb d6abbd5803e6369fd9111700ecbaaa94ff72eebe77c1ef9208fda4905d6bf51c 469840 asterisk-mobile_1.8.3.3-1_amd64.deb 32ee81b6d86a7d800caf66bc1af8d0a55cefe43969e9b4e38ed0da120aa535c1 28740422 asterisk-dbg_1.8.3.3-1_amd64.deb Files: 84eb91a51cb390c0386d728a70851b15 2395 comm optional asterisk_1.8.3.3-1.dsc 800684984c394ded3effe5096b579488 26871276 comm optional asterisk_1.8.3.3.orig.tar.gz e51bf412371719f18bead90843cde4f7 94516 comm optional asterisk_1.8.3.3-1.debian.tar.gz 347f78f7ba1a117a8d3303e130c9ff9f 4130144 doc extra asterisk-doc_1.8.3.3-1_all.deb f0c9f58dbc89fbfa35a08959791eb50a 773290 devel extra asterisk-dev_1.8.3.3-1_all.deb d7a9e71bc91f8ce986e2bdde8a73d1b9 824252 comm optional asterisk-config_1.8.3.3-1_all.deb cfb20c6da6b8e962fc7d3d894dfaf9d6 1552706 comm optional asterisk_1.8.3.3-1_amd64.deb 5c75515911372aa6768f006af4c19d9e 2616088 libs optional asterisk-modules_1.8.3.3-1_amd64.deb b768193ee56117b2ef505e9abac2aff9 599314 comm optional asterisk-h423_1.8.3.3-1_amd64.deb 4b10215d5de55f9f8467d96408f0124e 719964 comm optional asterisk-dahdi_1.8.3.3-1_amd64.deb 716afec6ba0271d3748b770b44f1be55 512328 comm optional asterisk-voicemail_1.8.3.3-1_amd64.deb c3fcf620cdb4743cc4bf3df653f1925b 527884 comm optional asterisk-voicemail-imapstorage_1.8.3.3-1_amd64.deb 5bb8183ef427b9630375f37e588085ff 518440 comm optional asterisk-voicemail-odbcstorage_1.8.3.3-1_amd64.deb 8c8aba2392b04800a83f1671b3271af3 853722 comm optional asterisk-ooh423_1.8.3.3-1_amd64.deb bed7f55515606a52369dac25fa6af2a2 456404 comm optional asterisk-mp3_1.8.3.3-1_amd64.deb adfe4a3ba5c1e43d45a54081965eaeb6 481508 comm optional asterisk-mysql_1.8.3.3-1_amd64.deb 5d4b29e25c8b7b0a8708f3e459d5e372 469840 comm optional asterisk-mobile_1.8.3.3-1_amd64.deb 6211b7007f0a7846d5052242ca853c7d 28740422 debug extra asterisk-dbg_1.8.3.3-1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAk212rkACgkQxArWdkN9MotoPwCgycj0aV/SzfFxDJZk6HjolsE9 C9sAoINpM5VianTex8WamU9/ExLfI6ZA =tMth -----END PGP SIGNATURE-----
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Sun, 26 Jun 2011 07:37:55 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.
Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.
Vulmon