ports/104567: [PATCH] net/asterisk: update to 1.2.13 (fixes remote execute security hole)
Thomas Sandford
freebsduser at paradisegreen.co.uk
Thu Oct 19 14:00:48 UTC 2006
>Number: 104567
>Category: ports
>Synopsis: [PATCH] net/asterisk: update to 1.2.13 (fixes remote execute security hole)
>Confidential: no
>Severity: critical
>Priority: high
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: update
>Submitter-Id: current-users
>Arrival-Date: Thu Oct 19 14:00:33 GMT 2006
>Closed-Date:
>Last-Modified:
>Originator: Thomas Sandford
>Release: FreeBSD 5.4-RELEASE i386
>Organization:
Paradise Green Technical Services
>Environment:
System: FreeBSD almaz.paradisegreen.co.uk 5.4-RELEASE FreeBSD 5.4-RELEASE #0: Sun May 15 12:31:08 BST 2005
>Description:
- Update to 1.2.13
Note this is an important security update, as versions <=1.2.12.1 have
a remotely exploitable security problem.
See release notes at http://www.asterisk.org/node/109 for details of the problem.
Port maintainer (sobomax at FreeBSD.org) is cc'd.
Generated with FreeBSD Port Tools 0.77
>How-To-Repeat:
>Fix:
--- asterisk-1.2.13.patch begins here ---
diff -ruN --exclude=CVS /usr/ports/net/asterisk-orig/Makefile /usr/ports/net/asterisk/Makefile
--- /usr/ports/net/asterisk-orig/Makefile Thu Oct 19 10:35:33 2006
+++ /usr/ports/net/asterisk/Makefile Thu Oct 19 11:26:33 2006
@@ -6,18 +6,13 @@
#
PORTNAME= asterisk
-PORTVERSION= 1.2.12.1
+PORTVERSION= 1.2.13
CATEGORIES= net
MASTER_SITES= http://ftp.digium.com/pub/asterisk/ \
http://ftp.digium.com/pub/asterisk/old-releases/
PATCHFILES= asterisk-1.2.12.1-codec-negotiation-20060926.diff.gz
PATCH_SITES= http://unofficial.portaone.com/~bamby/public/
-
-# ${PORTNAME}-1.2.4-${BRIVER}.patch.gz:bristuff
-# ${MASTER_SITE_LOCAL:S,$,:bristuff,}
-#PATCH_SITE_SUBDIR= fjoe/:bristuff
-#BRIVER= bristuff-0.3.0-PRE-1l
MAINTAINER= sobomax at FreeBSD.org
COMMENT= An Open Source PBX and telephony toolkit
diff -ruN --exclude=CVS /usr/ports/net/asterisk-orig/distinfo /usr/ports/net/asterisk/distinfo
--- /usr/ports/net/asterisk-orig/distinfo Thu Oct 19 10:35:33 2006
+++ /usr/ports/net/asterisk/distinfo Thu Oct 19 10:37:48 2006
@@ -1,6 +1,6 @@
-MD5 (asterisk-1.2.12.1.tar.gz) = 9c0d427f96c740163a22f5e0dbcb101d
-SHA256 (asterisk-1.2.12.1.tar.gz) = e54fc05f30764ad6678337ae386918481dd99347cfaa2d85fed3d0dc3a548d56
-SIZE (asterisk-1.2.12.1.tar.gz) = 10576676
+MD5 (asterisk-1.2.13.tar.gz) = ad8fbe2198568f55c254045ecb3b7926
+SHA256 (asterisk-1.2.13.tar.gz) = 8d197b118d9ee25bc8793b37d1daa6b54fd6074e6738f462368361e5698d98f8
+SIZE (asterisk-1.2.13.tar.gz) = 10584113
MD5 (asterisk-1.2.12.1-codec-negotiation-20060926.diff.gz) = b4db85eaa78fd3e716cd9d074233e8ae
SHA256 (asterisk-1.2.12.1-codec-negotiation-20060926.diff.gz) = d438f741e83c64590c149c64482cb9ef93669b1d5cb3b43577405be25d1e818e
SIZE (asterisk-1.2.12.1-codec-negotiation-20060926.diff.gz) = 32857
diff -ruN --exclude=CVS /usr/ports/net/asterisk-orig/files/patch-cdr::Makefile /usr/ports/net/asterisk/files/patch-cdr::Makefile
--- /usr/ports/net/asterisk-orig/files/patch-cdr::Makefile Thu Oct 19 10:35:33 2006
+++ /usr/ports/net/asterisk/files/patch-cdr::Makefile Thu Oct 19 10:53:45 2006
@@ -1,8 +1,5 @@
-
-$FreeBSD: ports/net/asterisk/files/patch-cdr::Makefile,v 1.7 2006/04/26 11:31:03 fjoe Exp $
-
---- cdr/Makefile.orig Tue Nov 29 20:24:39 2005
-+++ cdr/Makefile Thu Jan 12 17:56:23 2006
+--- cdr/Makefile.orig Thu Sep 21 17:18:19 2006
++++ cdr/Makefile Thu Oct 19 10:52:51 2006
@@ -21,8 +21,8 @@
endif
@@ -14,7 +11,7 @@
endif
#The problem with sparc is the best stuff is in newer versions of gcc (post 3.0) only.
-@@ -38,18 +38,18 @@
+@@ -38,21 +38,21 @@
#
# unixODBC stuff...
#
@@ -27,17 +24,21 @@
# FreeTDS stuff...
#
-ifneq ($(wildcard $(CROSS_COMPILE_TARGET)/usr/include/tds.h)$(wildcard $(CROSS_COMPILE_TARGET)/usr/local/include/tds.h)$(wildcard $(CROSS_COMPILE_TARGET)/usr/include/freetds/tds.h),)
-- ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/local/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.63),1)
+- ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/local/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.64),1)
+ifneq ($(wildcard $(CROSS_COMPILE_TARGET)/usr/include/tds.h)$(wildcard $(CROSS_COMPILE_TARGET)$(LOCALBASE)/include/tds.h)$(wildcard $(CROSS_COMPILE_TARGET)/usr/include/freetds/tds.h),)
-+ ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)$(LOCALBASE)/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.63),1)
- CFLAGS += -DFREETDS_0_63
++ ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)$(LOCALBASE)/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.64),1)
+ CFLAGS += -DFREETDS_0_64
else
-- ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/local/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.62),1)
-+ ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)$(LOCALBASE)/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.62),1)
- CFLAGS += -DFREETDS_0_62
+- ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/local/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.63),1)
++ ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)$(LOCALBASE)/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.63),1)
+ CFLAGS += -DFREETDS_0_63
else
- CFLAGS += -DFREETDS_PRE_0_62
-@@ -61,7 +61,7 @@
+- ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/local/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.62),1)
++ ifeq ($(shell grep -s TDS_VERSION_NO $(CROSS_COMPILE_TARGET)/usr/include/tdsver.h $(CROSS_COMPILE_TARGET)$(LOCALBASE)/include/tdsver.h $(CROSS_COMPILE_TARGET)/usr/include/freetds/tdsver.h | grep -c 0.62),1)
+ CFLAGS += -DFREETDS_0_62
+ else
+ CFLAGS += -DFREETDS_PRE_0_62
+@@ -65,7 +65,7 @@
#
# PGSQL stuff... Autoconf anyone??
#
@@ -46,7 +47,7 @@
MODS+=cdr_pgsql.so
endif
-@@ -82,9 +82,9 @@
+@@ -86,9 +86,9 @@
MLFLAGS+=-L$(CROSS_COMPILE_TARGET)/usr/lib/pgsql
endif
@@ -59,7 +60,7 @@
endif
ifneq ($(wildcard $(CROSS_COMPILE_TARGET)/opt/pgsql/include),)
-@@ -110,7 +110,7 @@
+@@ -114,7 +114,7 @@
all: depend $(MODS)
install: all
--- asterisk-1.2.13.patch ends here ---
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-ports-bugs
mailing list