ports/104567: [PATCH] net/asterisk: update to 1.2.13 (fixes remote execute security hole)

Thomas Sandford freebsduser at paradisegreen.co.uk
Thu Oct 19 14:00:48 UTC 2006 

>Number:         104567
>Category:       ports
>Synopsis:       [PATCH] net/asterisk: update to 1.2.13 (fixes remote execute security hole)
>Confidential:   no
>Severity:       critical
>Priority:       high
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          update
>Submitter-Id:   current-users
>Arrival-Date:   Thu Oct 19 14:00:33 GMT 2006
>Closed-Date:
>Last-Modified:
>Originator:     Thomas Sandford
>Release:        FreeBSD 5.4-RELEASE i386
>Organization:
Paradise Green Technical Services
>Environment:
System: FreeBSD almaz.paradisegreen.co.uk 5.4-RELEASE FreeBSD 5.4-RELEASE #0: Sun May 15 12:31:08 BST 2005
>Description:
- Update to 1.2.13

Note this is an important security update, as versions <=1.2.12.1 have
a remotely exploitable security problem.

See release notes at http://www.asterisk.org/node/109 for details of the problem.

Port maintainer (sobomax at FreeBSD.org) is cc'd.

Generated with FreeBSD Port Tools 0.77
>How-To-Repeat:
>Fix:

--- asterisk-1.2.13.patch begins here ---
diff -ruN --exclude=CVS /usr/ports/net/asterisk-orig/Makefile /usr/ports/net/asterisk/Makefile
--- /usr/ports/net/asterisk-orig/Makefile	Thu Oct 19 10:35:33 2006
+++ /usr/ports/net/asterisk/Makefile	Thu Oct 19 11:26:33 2006
@@ -6,18 +6,13 @@
 #
 
 PORTNAME=	asterisk
-PORTVERSION=	1.2.12.1
+PORTVERSION=	1.2.13
 CATEGORIES=	net
 MASTER_SITES=	http://ftp.digium.com/pub/asterisk/ \
 		http://ftp.digium.com/pub/asterisk/old-releases/
 
 PATCHFILES=	asterisk-1.2.12.1-codec-negotiation-20060926.diff.gz
 PATCH_SITES=	http://unofficial.portaone.com/~bamby/public/
-
-#		${PORTNAME}-1.2.4-${BRIVER}.patch.gz:bristuff
-#		${MASTER_SITE_LOCAL:S,$,:bristuff,}
-#PATCH_SITE_SUBDIR=	fjoe/:bristuff
-#BRIVER=		bristuff-0.3.0-PRE-1l
 
 MAINTAINER=	sobomax at FreeBSD.org
 COMMENT=	An Open Source PBX and telephony toolkit
diff -ruN --exclude=CVS /usr/ports/net/asterisk-orig/distinfo /usr/ports/net/asterisk/distinfo
--- /usr/ports/net/asterisk-orig/distinfo	Thu Oct 19 10:35:33 2006
+++ /usr/ports/net/asterisk/distinfo	Thu Oct 19 10:37:48 2006
@@ -1,6 +1,6 @@
-MD5 (asterisk-1.2.12.1.tar.gz) = 9c0d427f96c740163a22f5e0dbcb101d
-SHA256 (asterisk-1.2.12.1.tar.gz) = e54fc05f30764ad6678337ae386918481dd99347cfaa2d85fed3d0dc3a548d56
-SIZE (asterisk-1.2.12.1.tar.gz) = 10576676
+MD5 (asterisk-1.2.13.tar.gz) = ad8fbe2198568f55c254045ecb3b7926
+SHA256 (asterisk-1.2.13.tar.gz) = 8d197b118d9ee25bc8793b37d1daa6b54fd6074e6738f462368361e5698d98f8
+SIZE (asterisk-1.2.13.tar.gz) = 10584113
 MD5 (asterisk-1.2.12.1-codec-negotiation-20060926.diff.gz) = b4db85eaa78fd3e716cd9d074233e8ae
 SHA256 (asterisk-1.2.12.1-codec-negotiation-20060926.diff.gz) = d438f741e83c64590c149c64482cb9ef93669b1d5cb3b43577405be25d1e818e
 SIZE (asterisk-1.2.12.1-codec-negotiation-20060926.diff.gz) = 32857
diff -ruN --exclude=CVS /usr/ports/net/asterisk-orig/files/patch-cdr::Makefile /usr/ports/net/asterisk/files/patch-cdr::Makefile
--- /usr/ports/net/asterisk-orig/files/patch-cdr::Makefile	Thu Oct 19 10:35:33 2006
+++ /usr/ports/net/asterisk/files/patch-cdr::Makefile	Thu Oct 19 10:53:45 2006
@@ -1,8 +1,5 @@
-
-$FreeBSD: ports/net/asterisk/files/patch-cdr::Makefile,v 1.7 2006/04/26 11:31:03 fjoe Exp $
-
---- cdr/Makefile.orig	Tue Nov 29 20:24:39 2005
-+++ cdr/Makefile	Thu Jan 12 17:56:23 2006
+--- cdr/Makefile.orig	Thu Sep 21 17:18:19 2006
++++ cdr/Makefile	Thu Oct 19 10:52:51 2006
 @@ -21,8 +21,8 @@
  endif
  
@@ -14,7 +11,7 @@
  endif
  
  #The problem with sparc is the best stuff is in newer versions of gcc (post 3.0) only.
-@@ -38,18 +38,18 @@
+@@ -38,21 +38,21 @@
  #
  # unixODBC stuff...
  #
@@ -27,17 +24,21 @@
  # FreeTDS stuff...
  #
 -ifneq ($(wildcard $(CROSS_COMPILE_TARGET)/usr/include/tds.h)$(wildcard $(CROSS_COMPILE_TARGET)/usr/local/include/tds.h)$(wildcard $(CROSS_COMPILE_TARGET)/usr/include/freetds/tds.h),)
--  ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/local/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.63),1)
+-  ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/local/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.64),1)
 +ifneq ($(wildcard $(CROSS_COMPILE_TARGET)/usr/include/tds.h)$(wildcard $(CROSS_COMPILE_TARGET)$(LOCALBASE)/include/tds.h)$(wildcard $(CROSS_COMPILE_TARGET)/usr/include/freetds/tds.h),)
-+  ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)$(LOCALBASE)/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.63),1)
-     CFLAGS += -DFREETDS_0_63
++  ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)$(LOCALBASE)/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.64),1)
+     CFLAGS += -DFREETDS_0_64
    else
--	ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/local/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.62),1)
-+	ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)$(LOCALBASE)/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.62),1)
-       CFLAGS += -DFREETDS_0_62
+-    ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/local/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.63),1)
++    ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)$(LOCALBASE)/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.63),1)
+     CFLAGS += -DFREETDS_0_63
      else
-       CFLAGS += -DFREETDS_PRE_0_62
-@@ -61,7 +61,7 @@
+-	  ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/local/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.62),1)
++	  ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)$(LOCALBASE)/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.62),1)
+         CFLAGS += -DFREETDS_0_62
+       else
+         CFLAGS += -DFREETDS_PRE_0_62
+@@ -65,7 +65,7 @@
  #
  # PGSQL stuff...  Autoconf anyone??
  #
@@ -46,7 +47,7 @@
    MODS+=cdr_pgsql.so
  endif
  
-@@ -82,9 +82,9 @@
+@@ -86,9 +86,9 @@
    MLFLAGS+=-L$(CROSS_COMPILE_TARGET)/usr/lib/pgsql
  endif
  
@@ -59,7 +60,7 @@
  endif
  
  ifneq ($(wildcard $(CROSS_COMPILE_TARGET)/opt/pgsql/include),)
-@@ -110,7 +110,7 @@
+@@ -114,7 +114,7 @@
  all: depend $(MODS)
  
  install: all
--- asterisk-1.2.13.patch ends here ---

>Release-Note:
>Audit-Trail:
>Unformatted:

More information about the freebsd-ports-bugs mailing list