-
asterisk (1:1.4.11~dfsg-1) unstable; urgency=low
[ Tzafrir Cohen ]
* Remove libgtk2.0-dev from Build-Depends since the GTK+ console was not
getting built anyway.
[ Kilian Krause ]
* Add dpkg-dev (>= 1.13.19) to Build-Depends for binary:Version and
source:Version.
[ Faidon Liambotis ]
* New upstream release. (Closes: #439062)
- AST-2007-020 Resource Exhaustion vulnerability in SIP channel driver
* Switch to quilt as a patch management system instead of dpatch.
* Add bristuff 0.4.0-test4
- Split into smaller, individual patches (bristuff/).
- Mention HFC-S/HFC-4S support in the Description.
- Use libpri-bristuffed.so.1 and its respective header
(use-libpri-bristuffed).
- Ship xagi-test.c as an example.
- Add a news item to NEWS.Debian stating bristuff's inclusion.
* Major overhaul of the postinst scripts, completely replacing asterisk_fix.
- Create Asterisk's directories on asterisk.dirs to track them using dpkg.
- Add asterisk.postinst which calls adduser, chown, chmod. Improve error
handling.
- Don't do unnecessary stuff on asterisk-config postinst.
(Closes: #431506)
- chmod /etc/asterisk on build-time to allow the user to modify the
permissions; this required a lintian override.
- Honor dpkg-statoverride on all the chowned/chmoded directories and
configuration files under /etc/asterisk.
- Handle asterisk-config -> asterisk installation order properly
(Closes: #408708)
- Don't add asterisk user to audio and dialout groups if existed before.
This allows the administrator to remove the membership.
- Don't depend on adduser from asterisk-config.
* Remove Suggests to gnomemeeting (it's a dummy package nowdays),
asterisk-rate-engine and add one for twinkle.
* Remove Conflicts for an old version of asterisk-oh323 which was only
present until sarge.
* Remove versioned dependencies on ancient (pre-sarge) versions of sed and
adduser.
* Patch channels/h323/ast_h323.cxx to add some missing PTRACING #ifdef
(h323-add-missing-ptrace-guard).
* h323-workaround-openh323-segfault patch: workaround a libopenh323 bug
(#438815) which causes Asterisk to segfault on startup. (Closes: #435146)
* Remove -XCVS from dh_installexamples arguments. Upstream doesn't use CVS
anymore.
* Add a README.Debian for asterisk-h323 that explains the differences
between the different H.323 channel drivers, taken from the asterisk-oh323
package.
* Clarify asterisk-h323's description and mention the other channel drivers.
* Suggest asterisk-h323 from asterisk.
-- Sarah Hobbs <email address hidden> Wed, 29 Aug 2007 11:14:09 +0100
-
asterisk (1:1.4.10~dfsg-1) unstable; urgency=low
* New upstream release
- Fwd: [asterisk-announce] ASA-2007-019: Remote crash vulnerability in
Skinny channel driver (Closes: #436808)
[ Mark Purcell ]
* debhelper(1) states Build-Depends: debhelper (>= 5)
- aids backports
* Update debian/backports for etch, edgy, dapper and feisty
- http://status.buildserver.net/packages/status.php?package=asterisk&subdist=pkg-voip
[ Faidon Liambotis ]
* Refer to /usr/share/common-licenses/GPL-2 instead of GPL. The code is
-for now- GPLv2-only and in light of GPLv3, pointing to GPL is misleading.
* Add ast_key_dir patch to move keys from /var/lib/asterisk/keys to
/usr/share/asterisk/keys where they should be.
* Actually ship keys, including Junction Networks' by fixing pubkey_jnctn
patch.
* Handle space/newline-delimited directories on /etc/asterisk when doing
chmod on postinst.
* Correct descriptions of packages in debian/control, adapting them to the
present and correcting some spelling mistakes. (Closes: #428671)
* Add a noload directive for cdr_sqlite.so in the default modules.conf since
it writes unconditionally to the database file without being rotated,
resulting in unexpected waste of disk space. (Closes: #301883)
* Delete duplicated creation of /var/run/asterisk in the init script.
-- Lionel Porcheron <email address hidden> Tue, 14 Aug 2007 22:52:40 +0100
-
asterisk (1:1.4.9~dfsg-1) unstable; urgency=high
[ Tzafrir Cohen ]
* New upstream release.
- ASA-2007-018 - DoS Resource Exhaustion vulnerability in IAX2
[ Faidon Liambotis ]
* Add myself to Uploaders.
* Fix "debian/rules clean" to cleanup correctly the tree by calling "make
distclean" instead of "make clean". Also, fix some stuff in the upstream
Makefiles (debian/patches/make-clean-fixes). Fixes a lintian warning.
* Add XS-Vcs-Svn and XS-Vcs-Browser to debian/control.
* Move examples from all packages (debian/examples) to asterisk-config only.
* Add eagi-test.c, eagi-sphinx-test.c, fastagi-test and static-http to
examples.
* Remove Conflicts/Replaces/Depends to pre-sarge versions, they're useless
even for backports.
[ Mark Purcell ]
* Include asterisk.init changes from Martin
- Asterisk does not create /var/run/asterisk directory if not existent
(Closes: #413541)
* Backout asterisk-h323 Suggests:/ Recommends: asterisk-oh323. The former
works, the latter does not with asterisk-1.4.x
* Upstream fixes from 1.4.x branch:
- Multiple security flaws in Asterisk (Closes: #421467)
- Debug switch wrong in /etc/default/asterisk (Closes: #413544)
- Upgrading destroys astdb (Closes: #354132)
- Upgrading destroys astdb (Closes: #354132)
- asterisk bindaddr in sip and iax config is to fixed ip not
Interfaces (Closes: #316443)
- Incorrect callerid syntax in sip.conf causes incorrect error
(Closes: #323275)
- dropouts (Closes: #335079)
- Does not include cdr_sqlite userfield support by default (Closes:
#344097)
- Asterisk crashes on sparc when playing 'demo-moreinfo'
(Closes: #344484)
- fresh install - crash after dialing IAX test (Closes: #350001)
- asterisk_fix script fails to set variables for adduser, user
creation fails (Closes: #383075)
- Debug switch wrong in /etc/default/asterisk (Closes: #413544)
- When using L option on Dial, instead of warning asterisk disconnects
the call (Closes: #419894)
- Patch for fastagi handling (Closes: #368948)
- bristuff patch breaks cause codes in Hangup() (Closes: #320350)
* add debian/patches/basim-safeasterisk.dpatch
- contrib/scripts/safe_asterisk should explicitly link to a cli
(Closes: #413543)
* Adding a restart when convenient in Asterisk (Closes: #413816)
* asterisk-h323: libpt.so.1.10.2 => not found (Closes: #434076)
-- Lionel Porcheron <email address hidden> Wed, 01 Aug 2007 08:51:25 +0100
-
asterisk (1:1.4.8~dfsg-2ubuntu1) gutsy; urgency=low
* Merge from Debian unstable. Remaining Ubuntu changes:
- Modify Maintainer value to match Debian-Maintainer-Field Spec
- debian/patches/ubuntu_safe_asterisk.dpatch: use /bin/bash instead of
/bin/sh as specific bash functions are used in safe_asterisk script.
asterisk (1:1.4.8~dfsg-2) unstable; urgency=low
* Add patch from Faidon debian/patches/dbug433884.dpatch:
- Should not depend on libopenH323, libpt, libSDL, libssl, libldap,
... (Closes: #433884)
- Fails to restart after upgrade due to dep on libpt.so.1.10.2
(Closes: #434066)
-- Lionel Porcheron <email address hidden> Sun, 22 Jul 2007 10:38:27 +0200
-
asterisk (1:1.4.8~dfsg-1ubuntu1) gutsy; urgency=low
* Merge from Debian unstable. Remaining Ubuntu changes:
- Modify Maintainer value to match Debian-Maintainer-Field Spec
- debian/patches/ubuntu_safe_asterisk.dpatch: use /bin/bash instead of
/bin/sh as specific bash functions are used in safe_asterisk script.
asterisk (1:1.4.8~dfsg-1) unstable; urgency=high
* New upstream release
- ASA-2007-017: Remote crash vulnerability in
STUN implementation (Closes: #433681)
* Urgency high for remote crash vulnerability
* Updated standard version to 3.7.2 .
-- Lionel Porcheron <email address hidden> Thu, 19 Jul 2007 14:18:35 +0200
-
asterisk (1:1.4.6~dfsg-1ubuntu1) gutsy; urgency=low
* Merge from Debian unstable. Remaining Ubuntu changes:
- Modify Maintainer value to match Debian-Maintainer-Field Spec
- debian/patches/ubuntu_safe_asterisk.dpatch: use /bin/bash instead of
/bin/sh as specific bash functions are used in safe_asterisk script.
asterisk (1:1.4.6~dfsg-1) unstable; urgency=low
[ Mark Purcell ]
* CVE-2007-2488 was addressed 1:1.4.5~dfsg-1
* CVE-2007-1595 was addressed 1:1.4.0~dfsg-1
[ Tzafrir Cohen ]
* New upstream release.
* Added asterisk-dbg for debugging symbols.
* Updated priorities of some packages.
* Updated list of supported hardware in description.
-- Lionel Porcheron <email address hidden> Tue, 10 Jul 2007 14:00:09 +0200
-
asterisk (1:1.4.5~dfsg-1ubuntu2) gutsy; urgency=low
* Rebuild for the libcurl transition mess.
-- Steve Kowalik <email address hidden> Thu, 5 Jul 2007 00:11:23 +1000
-
asterisk (1:1.4.5~dfsg-1ubuntu1) gutsy; urgency=low
* Merge from Debian unstable. Remaining Ubuntu changes:
- Modify Maintainer value to match Debian-Maintainer-Field Spec
* debian/patches/ubuntu_safe_asterisk.dpatch: use /bin/bash instead of
/bin/sh as specific bash functions are used in safe_asterisk script.
asterisk (1:1.4.5~dfsg-1) unstable; urgency=low
[ Tzafrir Cohen ]
* New upstream release.
[ Mark Purcell ]
* Debconf7 Release :-)
* Build-Depends: libpq-dev
- obsolete build dependency postgresql-dev (Closes: #389376)
-- Lionel Porcheron <email address hidden> Tue, 19 Jun 2007 18:08:27 +0200
-
asterisk (1:1.4.4~dfsg-3ubuntu1) gutsy; urgency=low
* Merge from Debian unstable, remaining changes:
- Modify Maintainer value to match Debian-Maintainer-Field Spec
- change postgresql-dev to libpq-dev in Build-Depends
asterisk (1:1.4.4~dfsg-3) unstable; urgency=low
* Build-Depends: libcurl4-dev | libcurl-dev
- uninstallable due to dependancy on libcurl3 (Closes: #426393)
-- Lionel Porcheron <email address hidden> Tue, 05 Jun 2007 00:33:45 +0200
-
asterisk (1:1.4.4~dfsg-2ubuntu1) gutsy; urgency=low
* Merge from Debian unstable, Ubuntu changes:
- Modify Maintainer value to match Debian-Maintainer-Field Spec
- merge changelog to get all asterisk revisions (do not get rid of
revisions after 26 Sep 2006)
- change postgresql-dev to libpq-dev in Build-Depends
asterisk (1:1.4.4~dfsg-2) unstable; urgency=low
* Missing debian/changelog entries
* Upstream calls make twice to build h323, copy in debian/rules
- Asterisks chan_h323 doesn't work because of an undefined symbol
(Closes: #421552)
* Cleanup debian/patches
* chmod +x asterisk-fix
- Setting up asterisk (1.4.3~dfsg-1) -> id: asterisk: No such user
(Closes: #422237)
asterisk (1:1.4.4~dfsg-1) unstable; urgency=low
* New Upstream Release
- Fix a crash in chan_zap
- Fix some cases where IAX2 calls would get dropped
- Merge a re-write of channel group counting support that fixes a lot of
issues
- Fix some DTMF issues related to the use of chan_agent
- Fix a crash that occurs when using dialplan functions to set global
variables
asterisk (1:1.4.3~dfsg-1) unstable; urgency=high
* Urgency high as this fixes a number of Asterisk Security Advisories (ASA)
* New upstream release
- [<email address hidden>: [asterisk-announce] ASA-2007-011: Multiple
problems in SIP channel parser handling response codes] (Closes:
#420864)
- [<email address hidden>: [asterisk-announce] ASA-2007-012: Remote
Crash Vulnerability in Manager Interface] (Closes: #420866)
- [<email address hidden>: [asterisk-announce] ASA-2007-010: Two
stack buffer overflows in SIP channel's T.38 SDP parsing code]
(Closes: #420868)
- CVE-2007-1594: Asterisk segfaults upon receipt of a certain SIP
packet (SIP Response code 0) (Closes: #419820)
* Update debian/NEWS to broadcast the demise of bristuff
* Asterisk-classic, asterisk-bristuff are depreciated
- asterisk has circular Depends on asterisk-bristuff|asterisk-classic
(Closes: #384674)
* Ship UPGRADE.txt and refer to it in debian/NEWS
- UPGRADE.txt cannot be found in any package (Closes: #419164)
asterisk (1:1.4.2~dfsg-5) unstable; urgency=low
* Bump Build-Depends: libsnmp10-dev | libsnmp-dev
* Only ship default/asterisk in asterisk package
- Asterisk-config and asterisk 1:1.4.2~dfsg-4 both contain
/etc/default/asterisk (Closes: #418656)
* Lintian fixes debian-rules-sets-DH_COMPAT
asterisk (1:1.4.2~dfsg-4) experimental; urgency=low
[ Tzafrir Cohen ]
* The dummy fetch was not executable when generated from tar+diff.
[ Mark Purcell ]
* Create debian/rules binary-arch & binary-indep targets
* Move debian/rules magic to package.install files
asterisk (1:1.4.2~dfsg-3) experimental; urgency=low
* Fix syntax of for dummy fetch (Closes: #416143).
* LSB init section in init.d script.
* Merge other init.d changes from trunk.
asterisk (1:1.4.2~dfsg-2) experimental; urgency=low
[ Tzafrir Cohen ]
* Fix default varrundir using make vars (Closes: #415799).
* Don't run autoconf if you don't need (Closes: #415865).
* Require zaptel >= 1.4.1, for ZT_EVENT_REMOVED .
[ Mark Purcell ]
* Include chan_h323.so in debian/asterisk-h323.install
* Please package Asterisk-1.4.0 (Closes: #405723)
* Add Build-Depends: libgtk2.0-dev, libc-client-dev
* configure --with-pwlib=/usr/share/pwlib/include/ \
--with-h323=/usr/share/openh323/
* debian/asterisk.default - fix -D/-d typo in PARAMS (Closes LP#68169)
* debian/asterisk.init:
- create /var/run/ directory if necessary and set proper permissions
* Move dh_installinit to architecture dependant
* Move ASTVARRUNDIR to /var/run/asterisk/
- PID & control files go in wrong place (Closes: #415799)
asterisk (1:1.4.2~dfsg-1) experimental; urgency=low
* New upstream release.
- SIP INVITE DoS, supposedly fixed in 1.4.2 and 1.2.17, which is
released today 19/03/2007 (Closes: #415466)
* asterisk Depends: ${shlibs:Depends}
asterisk (1:1.4.1~dfsg-1) experimental; urgency=low
[ Tzafrir Cohen ]
* New upstream release.
- Please package Asterisk-1.4.0 (Closes: #405723)
* A package that builds.
* Removed asterisk-sounds.install: does not belong here.
* Removed makefile_noiaxy.dpatch: applied by upstream.
* Config examples in a separate examples subdirectory.
* Generate explicitly some missing subdirectories.
* Man pages are included in upstream now.
* set ASTDATADIR=/usr/share/asterisk .
* A bunch of other fils moved for 1.4 .
* Use system gsm (only requires an explicit --with-gsm)
* Allow chrooted building with no wget.
* h323_no_exit.dpatch: Don't requires two rounds of building.
[ Mark Purcell ]
* configure --host=$(DEB_HOST_GNU_TYPE) --build=$(DEB_BUILD_GNU_TYPE)
--prefix=/usr --mandir=\$${prefix}/share/man --
infodir=\$${prefix}/share/info
asterisk (1:1.4.0~dfsg-1) UNRELEASED; urgency=low
* New upstream release (1.4)
* Sandbox to start playing with 1.4, it uses autotools :-),
it also uses ASTDATADIR :-) :-)
* need to understand this menuselect and how to encorporate into debian.
* need to discuss with upstream iLBC conflict with GPL
* Ugly hack in version number.
* get-orig-source now works, though.
* No more asterisk-classic and asterisk-bristuff
* FreePlay Music files location changed
* Disabling h323 build for now, until I figure what's wrong.
* Extra Build-Deps: libiksemel-dev, libradiusclient-ng2-dev, freetds-dev,
libvorbis-dev, libsnmp9-dev
* Simply use configure. No workarounds.
* Edit menuselect.makeopts to avoid downloading MOH files.
* makefile_noiaxy.dpatch: don't try to copy the non-existing iaxy.bin ,
* zapbri.dpatch: support zapbri devices
* chanzap_chanremoved.dpatch: handle ZT_EVENT_REMOVED event from zaptel
asterisk (1:1.2.16~dfsg-1) unstable; urgency=high
[ Tzafrir Cohen ]
* New upstream release. Also fixes remote SIP security hole.
* Updated bristuff patch.
* Fix umask of Asterisk for the voicemail.
asterisk (1:1.2.15~dfsg-1) unstable; urgency=low
[ Tzafrir Cohen ]
* New upstream release.
* ukcid.dpatch: adapted to chan_conf.
* bristuff.dpatch: adapted to chan_conf.
* daemon_color.dpatch: make rastrisk colourful even without safe_asterisk.
* No need to edit a config file to start Asterisk.
* Use asterisk.conf based on README.asterisk.conf:
- Set default user to asterisk.
- Make the control socket writabe by the group asterisk.
* don't remove stereorize and streamplayer.
* A man page for stereorize.
* Create /etc/asterisk/manager.d (Closes: #410715).
* Check that Asterisk is alive before sending a command (Closes: #389448).
* Use MAKEBUILDOPTS instead of MAKEFLAGS, which is a reserved gmake name.
* Removing build depepndency on obsolete and unused libzap-dev.
* New transcoding interfaces from zaptel.h of zaptel 1.2.13 or 1.4 seem
to be required for Asterisk 1.2.15 .
asterisk (1:1.2.14~dfsg-5) UNRELEASED; urgency=low
[ Tzafrir Cohen ]
* Bristuff 0.3.0-PRE-1x
asterisk (1:1.2.14~dfsg-4) unstable; urgency=high
* Add missing "fi" to asterisk_fix. (Closes: #406961)
asterisk (1:1.2.14~dfsg-3) unstable; urgency=low
* Write a more robust version of the FHS-update for
/usr/share/asterisk/sounds/priv-callerintros.
* Update 30_ast-data-dir to complete fix for #406714. Thanks to Lionel!
asterisk (1:1.2.14~dfsg-2) unstable; urgency=low
* Install private callerinfos in /var/lib/ where they belong acording to
FHS. (Closes: #406714)
asterisk (1:1.2.14~dfsg-1) unstable; urgency=low
* New upstream release.
* Build against libspeex-dev (>= 1.1.12-3) with updated shlibs
(Closes: #403544)
* Update bristuff patch to apply cleanly with 1.2.14 until new upstream
version is out.
* Remove hardcoded gcc (Closes: #316802)
* Fix upstream clean target. (Closes: #393659)
asterisk (1:1.2.13~dfsg-2) unstable; urgency=low
[ Tzafrir Cohen ]
* less_docs.dpatch: remove unnecessary doxygen docs. asterisk-doc's size
is now 1.6M (7.7M installed).
[ Mark Purcell ]
* asterisk-classic, asterisk-bristuff:
/usr/lib/asterisk/modules/format_ogg_vorbis.so gone missing when
rebuilt (Closes: #397147)
asterisk (1:1.2.13~dfsg-1) unstable; urgency=high
[ Kilian Krause ]
* Fixup dfsg versions with increased upstream build count.
[ Santiago Ruano Rincón ]
* Added cdr_sqlite3_custom dpatch
[ Mark Purcell ]
* New upstream release
- Remote compromise (Closes: #394025)
- CVE-2006-5444/5:security issues in asterisk (Closes: #395080)
- Urgency high as this fixes remote compromise security issue
- Information disclosure of voice mail messages through vmail.cgi
(Closes: #338116)
- package asterisk-dev should contain asterisk.h main header (Closes:
#342138)
- format_ogg_vorbis.so was present in i386, no longer in packages
(Closes: #375141)
* Update debian/patches/bristuff.dpatch
* bristuff-0.3.0-PRE-1v
- Please package bristuff 0.3.0PREu (Closes: #394122)
- please include app_pickup.c from bristuff (Closes: #348194)
* Build Depends: dpkg ( >= 1.13.19)
- Asterisk must build-depend upon dpkg ( >= 1.13.19) (Closes: #386113)
* Build-Depends: libpq-dev
- obsolete build dependency postgresql-dev (Closes: #389376)
-- Lionel Porcheron <email address hidden> Fri, 18 May 2007 05:03:13 -0400
-
asterisk (1:1.2.16~dfsg-1ubuntu3) feisty; urgency=low
* SECURITY UPDATE: Fix SIP DoS vulnerability
* References:
https://launchpad.net/ubuntu/+source/asterisk/+bug/94792
http://svn.digium.com/view/asterisk/branches/1.2/channels/chan_sip.c?r1=58115&r2=58579
http://www.asterisk.org/node/48339
CVE-2007-1561
-- Martin Jürgens <email address hidden> Thu, 22 Mar 2007 22:27:15 +0100
