Date: Fri, 29 Mar 2013 10:04:43 +0000 (UTC) From: Florian Smeets <flo@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r315534 - in head: net/asterisk net/asterisk10 net/asterisk11 security/vuxml Message-ID: <201303291004.r2TA4hBH038983@svn.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: flo Date: Fri Mar 29 10:04:43 2013 New Revision: 315534 URL: http://svnweb.freebsd.org/changeset/ports/315534 Log: Update asterisk ports to: net/asterisk 1.8.20.2 net/asterisk10 10.12.2 net/asterisk11 11.2.2 Security: daf0a339-9850-11e2-879e-d43d7e0c7c02 Modified: head/net/asterisk/Makefile head/net/asterisk/distinfo head/net/asterisk10/Makefile head/net/asterisk10/distinfo head/net/asterisk11/Makefile head/net/asterisk11/distinfo head/security/vuxml/vuln.xml Modified: head/net/asterisk/Makefile ============================================================================== --- head/net/asterisk/Makefile Fri Mar 29 10:03:58 2013 (r315533) +++ head/net/asterisk/Makefile Fri Mar 29 10:04:43 2013 (r315534) @@ -2,7 +2,7 @@ # $FreeBSD$ PORTNAME= asterisk -PORTVERSION= 1.8.20.1 +PORTVERSION= 1.8.20.2 CATEGORIES= net MASTER_SITES= http://downloads.asterisk.org/pub/telephony/asterisk/ \ http://downloads.asterisk.org/pub/telephony/asterisk/old-releases/ Modified: head/net/asterisk/distinfo ============================================================================== --- head/net/asterisk/distinfo Fri Mar 29 10:03:58 2013 (r315533) +++ head/net/asterisk/distinfo Fri Mar 29 10:04:43 2013 (r315534) @@ -1,2 +1,2 @@ -SHA256 (asterisk-1.8.20.1.tar.gz) = da36c54a865303388fffc4f8b9636c22eedf8f9dc2ebf26d3cce0679a2354ef8 -SIZE (asterisk-1.8.20.1.tar.gz) = 25176713 +SHA256 (asterisk-1.8.20.2.tar.gz) = 67d9cb7f569d49bfdbd94f6d81b13bac690abadaff79d68c242ed4e55426b59e +SIZE (asterisk-1.8.20.2.tar.gz) = 25180212 Modified: head/net/asterisk10/Makefile ============================================================================== --- head/net/asterisk10/Makefile Fri Mar 29 10:03:58 2013 (r315533) +++ head/net/asterisk10/Makefile Fri Mar 29 10:04:43 2013 (r315534) @@ -2,7 +2,7 @@ # $FreeBSD$ PORTNAME= asterisk -PORTVERSION= 10.12.1 +PORTVERSION= 10.12.2 CATEGORIES= net MASTER_SITES= http://downloads.asterisk.org/pub/telephony/asterisk/ \ http://downloads.asterisk.org/pub/telephony/asterisk/old-releases/ Modified: head/net/asterisk10/distinfo ============================================================================== --- head/net/asterisk10/distinfo Fri Mar 29 10:03:58 2013 (r315533) +++ head/net/asterisk10/distinfo Fri Mar 29 10:04:43 2013 (r315534) @@ -1,2 +1,2 @@ -SHA256 (asterisk-10.12.1.tar.gz) = a8a9f6f4d6f28177b1fccbed94c2f49fdcfa215e954dfd594bf6afdea1b6d6f2 -SIZE (asterisk-10.12.1.tar.gz) = 25114264 +SHA256 (asterisk-10.12.2.tar.gz) = fc892e986ba281e6aa193e3edbf515875407a76599e0da52883de8e386793288 +SIZE (asterisk-10.12.2.tar.gz) = 25117561 Modified: head/net/asterisk11/Makefile ============================================================================== --- head/net/asterisk11/Makefile Fri Mar 29 10:03:58 2013 (r315533) +++ head/net/asterisk11/Makefile Fri Mar 29 10:04:43 2013 (r315534) @@ -1,7 +1,7 @@ # $FreeBSD$ PORTNAME= asterisk -PORTVERSION= 11.2.1 +PORTVERSION= 11.2.2 CATEGORIES= net MASTER_SITES= http://downloads.asterisk.org/pub/telephony/asterisk/ \ http://downloads.asterisk.org/pub/telephony/asterisk/old-releases/ Modified: head/net/asterisk11/distinfo ============================================================================== --- head/net/asterisk11/distinfo Fri Mar 29 10:03:58 2013 (r315533) +++ head/net/asterisk11/distinfo Fri Mar 29 10:04:43 2013 (r315534) @@ -1,2 +1,2 @@ -SHA256 (asterisk-11.2.1.tar.gz) = 239f42037f8eb43d6cd69b286a4de3da5d9491806ef29211e0f074f63b130825 -SIZE (asterisk-11.2.1.tar.gz) = 30465933 +SHA256 (asterisk-11.2.2.tar.gz) = b470a27745735a49e83dc9842ec892c9b4ab186e5d44db68ea1db66e6c684c7b +SIZE (asterisk-11.2.2.tar.gz) = 30468125 Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Fri Mar 29 10:03:58 2013 (r315533) +++ head/security/vuxml/vuln.xml Fri Mar 29 10:04:43 2013 (r315534) @@ -51,6 +51,47 @@ Note: Please add new entries to the beg --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">; + <vuln vid="daf0a339-9850-11e2-879e-d43d7e0c7c02"> + <topic>asterisk -- multiple vulnerabilities</topic> + <affects> + <package> + <name>asterisk11</name> + <range><gt>11.*</gt><lt>11.2.2</lt></range> + </package> + <package> + <name>asterisk10</name> + <range><gt>10.*</gt><lt>10.12.2</lt></range> + </package> + <package> + <name>asterisk18</name> + <range><gt>1.8.*</gt><lt>1.8.20.2</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml">; + <p>Asterisk project reports:</p> + <blockquote cite="https://www.asterisk.org/security">; + <p>Buffer Overflow Exploit Through SIP SDP Header</p> + <p>Username disclosure in SIP channel driver</p> + <p>Denial of Service in HTTP server</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2013-2685</cvename> + <cvename>CVE-2013-2686</cvename> + <cvename>CVE-2013-2264</cvename> + <url>http://downloads.asterisk.org/pub/security/AST-2013-001.html</url>; + <url>http://downloads.asterisk.org/pub/security/AST-2013-002.html</url>; + <url>http://downloads.asterisk.org/pub/security/AST-2013-003.html</url>; + <url>https://www.asterisk.org/security</url>; + </references> + <dates> + <discovery>2013-03-27</discovery> + <entry>2013-03-29</entry> + </dates> + </vuln> + <vuln vid="7a282e49-95b6-11e2-8433-0800273fe665"> <topic>dns/bind9* -- Malicious Regex Can Cause Memory Exhaustion</topic> <affects>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201303291004.r2TA4hBH038983>