Security upgrade on the 10.5 branch addressing a remote crash vulnerability in the SCCP channel driver, CVE-2012-3553/AST-2012-009. Remove vulnerable ebuilds.

Package-Manager: portage-2.1.10.65/cvs/Linux x86_64
author: Tony Vroon <chainsaw@gentoo.org> 2012-06-15 11:00:19 +0000
committer: Tony Vroon <chainsaw@gentoo.org> 2012-06-15 11:00:19 +0000
commit: c61f88c4b2e99632e95f014ee77577854bfde898 (patch)
tree: 59423ce2eafd442246cb129f7710d5897c59d5e1 /net-misc/asterisk
parent: Add missing RDEPEND on x11-misc/appmenu-qt, wrt bug #420909 by Kirill Elagin ... (diff)
download: historical-c61f88c4b2e99632e95f014ee77577854bfde898.tar.gz
historical-c61f88c4b2e99632e95f014ee77577854bfde898.tar.bz2
historical-c61f88c4b2e99632e95f014ee77577854bfde898.zip
4 files changed, 16 insertions, 301 deletions
diff --git a/net-misc/asterisk/ChangeLog b/net-misc/asterisk/ChangeLog
index d14252a9151d..64b167617f41 100644
--- a/net-misc/asterisk/ChangeLog
+++ b/net-misc/asterisk/ChangeLog
@@ -1,6 +1,14 @@
 # ChangeLog for net-misc/asterisk
 # Copyright 1999-2012 Gentoo Foundation; Distributed under the GPL v2
-# $Header: /var/cvsroot/gentoo-x86/net-misc/asterisk/ChangeLog,v 1.398 2012/06/06 10:07:45 chainsaw Exp $
+# $Header: /var/cvsroot/gentoo-x86/net-misc/asterisk/ChangeLog,v 1.399 2012/06/15 11:00:19 chainsaw Exp $
+
+*asterisk-10.5.1 (15 Jun 2012)
+
+  15 Jun 2012; Tony Vroon <chainsaw@gentoo.org> -asterisk-10.4.1.ebuild,
+  -asterisk-10.5.0.ebuild, +asterisk-10.5.1.ebuild:
+  Security upgrade on the 10.5 branch addressing a remote crash vulnerability
+  in the SCCP channel driver, CVE-2012-3553/AST-2012-009. Remove vulnerable
+  ebuilds.
 
 *asterisk-10.5.0 (06 Jun 2012)
 *asterisk-1.8.13.0 (06 Jun 2012)
diff --git a/net-misc/asterisk/Manifest b/net-misc/asterisk/Manifest
index edc2e7bccc01..8ea753d0062d 100644
--- a/net-misc/asterisk/Manifest
+++ b/net-misc/asterisk/Manifest
@@ -14,22 +14,19 @@ AUX 1.8.0/find_call_ids.sh 1078 RMD160 094d2f014fa6570aaab2eecf3e20bb89788b0f22
 AUX 1.8.0/find_call_sip_trace.sh 1115 RMD160 a9f2782feabc2866bd8476779f69d3d97aa0a7c0 SHA1 69f323eb23db20feec17e5d6dba8861d52856d14 SHA256 e1ebeb1dab05f552f89f380719d319cdf579cb6aeb86a9010e13e14c57f55985
 DIST asterisk-1.8.12.1.tar.gz 25089535 RMD160 7dfacbdcc178100e71d39ea3157b81b7b4bf2ae8 SHA1 b09fb86bfb6f157e65c892da794e07111240ad73 SHA256 413d65f5a647b8dd946cdedb1a835cea5f898f67157615ff159f5f64d8e90faf
 DIST asterisk-1.8.13.0.tar.gz 25059587 RMD160 f1ce05e56a61e3b4215dd7b9fc3f8331bf70486b SHA1 9c45a16d99a5ea1d73e88b3556d9ee5b2afa594b SHA256 578c46cef13ccc17e201e4cce50b21bf9e2fbd9516c69e7529ac0b43b1c041e1
-DIST asterisk-10.4.1.tar.gz 25009227 RMD160 0e9fffb4dab860febd0382e86527eb9835f1f9a8 SHA1 12e41de049ba64ddcc290b39d1728b8c78c7d41b SHA256 8b90898961319f5c947cdd9ecd472c677a7b9dcd2732ff34a8318fc7725c8bde
-DIST asterisk-10.5.0.tar.gz 24980521 RMD160 cde557a9e2041881e364061bb4f59a165b929acd SHA1 8f44a57c67f8c8e01098b0de61dfd82cdf837c25 SHA256 0ac487ed88f798e4ed964ea4c46063572589864cdf7c839b6a040ff60d958178
+DIST asterisk-10.5.1.tar.gz 24970486 RMD160 3e4e371a7bd533242c806bf683f0d1ad9afdeb70 SHA1 f927384456aaadc6990730927644f162b7e50536 SHA256 2d75184a25fc1cac80c1eacdb1cec3f1538cc7be16f1601daa46f06994f01ce5
 DIST gentoo-asterisk-patchset-1.12.tar.bz2 30340 RMD160 b4e65e60f98cb5d125ecf6ca44c0526ebfc7c8d2 SHA1 213a501b3d0c08b48e545fe91c9282c79f3aa33d SHA256 42540637a94c127aee5028650c6f8695a30930d074a4ec25214c17053e35c257
 DIST gentoo-asterisk-patchset-1.13.tar.bz2 30353 RMD160 8649e15f7bf3766e4aaf5426559f71673d8a52b3 SHA1 873a8b80f670c7889271fc838e64988e654a78b8 SHA256 de4d9b4ab9c2d403077cb575e08c33d7320a38da48e1af1cbc545fea34f5c7f5
-DIST gentoo-asterisk-patchset-2.4.tar.bz2 7083 RMD160 0d82c7837ea6008dc442168af841ab00cc79a57c SHA1 750bfca96e7c8695cb82988b4c0da92409f0ce3e SHA256 fb26b569ea2cf020d5da0957856a6b5c8fbdfd083ad09b39c8cec2a8807814a2
 DIST gentoo-asterisk-patchset-2.5.tar.bz2 5839 RMD160 b3f226d89c39f4a0ca769618bc7cd06419fe8be7 SHA1 a7cbb5f8ab8f908c81bc22ef6cd1caa5e4d91949 SHA256 f67f262ab907213e6ae355923cc57d2065029f216ccebf18044ffb7f31303ced
 EBUILD asterisk-1.8.12.1.ebuild 8502 RMD160 29cffb42bd275f35e9f52a85c91e4c49f1bfd79f SHA1 03f67abcd328f4a1f4e29a1b2433fc83513dfe57 SHA256 9841979a176814a61223cc7904709a26031eeb2e6fa0eae655dc1be993c6574c
 EBUILD asterisk-1.8.13.0.ebuild 8520 RMD160 9f2dbad9a6eb9cb204faa62dfaa8d46839d565eb SHA1 42c0d0e426fc2b87688fb3e1b68e23547f759c42 SHA256 c105b6aaf990e8a9831d5b8f3f352374083af7e83663a5433fec8db4d04fd9e6
-EBUILD asterisk-10.4.1.ebuild 8584 RMD160 3216de1eea7f153e871d11b8da4a1e80c73fa90b SHA1 07b2c54ee3f163a194a1c03474e62228337e4eaf SHA256 c9600a6f65b2113da05a431f54231dfc6a8d7c69a0e10f04fd81afd98b55cb8f
-EBUILD asterisk-10.5.0.ebuild 8584 RMD160 cddf090190ea268df89f6de5a089fa929f6d29f3 SHA1 e503b95e4f897c296255ef00996a5f1501d02e0e SHA256 b95488ea2e6aeec70f3794c44fb2e05e208a836d6319761228219ceebe9e0fde
-MISC ChangeLog 103093 RMD160 2e57d12daf8d62e14868f65369f69f418cd22854 SHA1 54e06eccf84bbd38b471dcd0ea27156a3a786df3 SHA256 eb414d5a9ad7806ea198ef6c90d914821744cf8be1a198a5ef08dd6475593b34
+EBUILD asterisk-10.5.1.ebuild 8584 RMD160 5732f9ba409d8409f9a66753799919130bbf1a5e SHA1 011acca2a13c406c9ede3ecac34c7854e8dfd849 SHA256 6d781516ff77a4f6318734a49907ff531aaa7aff21e773532caa9d5eb78e80c8
+MISC ChangeLog 103416 RMD160 955f08aa6c28def394cf24d35a0265c1666f0d0e SHA1 d4f7f188ed44e510398f04b0a6301da262732019 SHA256 86b3cd60f9da99efc7eab9ef7114e702852e9c5ed996c62c11c81ec9500b1b36
 MISC metadata.xml 1028 RMD160 5b59e20d3efbe652abf786d05a7b9744105a088b SHA1 e718c3ce0210047b34a05c92ff8a7b4707316e17 SHA256 63267079fefbcc798d902e6b9822609df79c756a9934c3ad3abdabfbad357de5
 -----BEGIN PGP SIGNATURE-----
 Version: GnuPG v2.0.19 (GNU/Linux)
 
-iEYEARECAAYFAk/PLAMACgkQp5vW4rUFj5qlNgCfbaq15voa9CrHRMY5QDkg3Dve
-+z0An2xfGXCJ8Q3P1y1TtML5cFvd7Dzd
-=dpwF
+iEYEARECAAYFAk/bFdYACgkQp5vW4rUFj5qbNACfRrkAuV5IM7hE+3X1f0T65jC/
+aGcAoL6bAxUrFTDeS9txqq52F2fC58Sh
+=dWrH
 -----END PGP SIGNATURE-----
diff --git a/net-misc/asterisk/asterisk-10.4.1.ebuild b/net-misc/asterisk/asterisk-10.4.1.ebuild
deleted file mode 100644
index f7d5bf5c4248..000000000000
--- a/net-misc/asterisk/asterisk-10.4.1.ebuild
+++ /dev/null
@@ -1,290 +0,0 @@
-# Copyright 1999-2012 Gentoo Foundation
-# Distributed under the terms of the GNU General Public License v2
-# $Header: /var/cvsroot/gentoo-x86/net-misc/asterisk/asterisk-10.4.1.ebuild,v 1.1 2012/05/29 22:41:55 chainsaw Exp $
-
-EAPI=4
-inherit autotools base eutils linux-info multilib
-
-MY_P="${PN}-${PV/_/-}"
-
-DESCRIPTION="Asterisk: A Modular Open Source PBX System"
-HOMEPAGE="http://www.asterisk.org/"
-SRC_URI="http://downloads.asterisk.org/pub/telephony/asterisk/${MY_P}.tar.gz
-	 mirror://gentoo/gentoo-asterisk-patchset-2.4.tar.bz2"
-LICENSE="GPL-2"
-SLOT="0"
-KEYWORDS="~amd64 ~x86"
-
-IUSE="ais alsa bluetooth calendar +caps curl dahdi debug doc freetds gtalk http iconv jabber jingle ldap lua mysql newt +samples odbc osplookup oss portaudio postgres radius snmp span speex srtp static syslog usb vorbis"
-REQUIRED_USE="gtalk? ( jabber )"
-
-EPATCH_SUFFIX="patch"
-PATCHES=( "${WORKDIR}/asterisk-patchset" )
-
-RDEPEND="dev-db/sqlite:3
-	dev-libs/popt
-	dev-libs/libxml2
-	dev-libs/openssl
-	sys-libs/ncurses
-	sys-libs/zlib
-	ais? ( sys-cluster/openais )
-	alsa? ( media-libs/alsa-lib )
-	bluetooth? ( net-wireless/bluez )
-	calendar? ( net-libs/neon
-		 dev-libs/libical
-		 dev-libs/iksemel )
-	caps? ( sys-libs/libcap )
-	curl? ( net-misc/curl )
-	dahdi? ( >=net-libs/libpri-1.4.12_beta2
-		net-misc/dahdi-tools )
-	freetds? ( dev-db/freetds )
-	gtalk? ( dev-libs/iksemel )
-	http? ( dev-libs/gmime:2.4 )
-	iconv? ( virtual/libiconv )
-	jabber? ( dev-libs/iksemel )
-	jingle? ( dev-libs/iksemel )
-	ldap? ( net-nds/openldap )
-	lua? ( dev-lang/lua )
-	mysql? ( virtual/mysql )
-	newt? ( dev-libs/newt )
-	odbc? ( dev-db/unixODBC )
-	osplookup? ( net-libs/osptoolkit )
-	portaudio? ( media-libs/portaudio )
-	postgres? ( dev-db/postgresql-base )
-	radius? ( net-dialup/radiusclient-ng )
-	snmp? ( net-analyzer/net-snmp )
-	span? ( media-libs/spandsp )
-	speex? ( media-libs/speex )
-	srtp? ( net-libs/libsrtp )
-	usb? ( virtual/libusb:0
-		media-libs/alsa-lib )
-	vorbis? ( media-libs/libvorbis )"
-
-DEPEND="${RDEPEND}
-	!net-libs/openh323"
-
-RDEPEND="${RDEPEND}
-	syslog? ( virtual/logger )"
-
-PDEPEND="net-misc/asterisk-core-sounds
-	net-misc/asterisk-extra-sounds
-	net-misc/asterisk-moh-opsound"
-
-S="${WORKDIR}/${MY_P}"
-
-pkg_setup() {
-	CONFIG_CHECK="~!NF_CONNTRACK_SIP"
-	local WARNING_NF_CONNTRACK_SIP="SIP (NAT) connection tracking is enabled. Some users
-	have reported that this module dropped critical SIP packets in their deployments. You
-	may want to disable it if you see such problems."
-	check_extra_config
-
-	enewgroup asterisk
-	enewgroup dialout 20
-	enewuser asterisk -1 -1 /var/lib/asterisk "asterisk,dialout"
-}
-
-src_prepare() {
-	base_src_prepare
-	AT_M4DIR=autoconf eautoreconf
-}
-
-src_configure() {
-	econf \
-		--libdir="/usr/$(get_libdir)" \
-		--localstatedir="/var" \
-		--with-crypto \
-		--with-gsm=internal \
-		--with-popt \
-		--with-ssl \
-		--with-z \
-		$(use_with caps cap) \
-		$(use_with http gmime) \
-		$(use_with newt) \
-		$(use_with portaudio)
-
-	# Blank out sounds/sounds.xml file to prevent
-	# asterisk from installing sounds files (we pull them in via
-	# asterisk-{core,extra}-sounds and asterisk-moh-opsound.
-	>"${S}"/sounds/sounds.xml
-
-	# Compile menuselect binary for optional components
-	emake menuselect.makeopts
-
-	# Broken functionality is forcibly disabled (bug #360143)
-	menuselect/menuselect --disable chan_misdn menuselect.makeopts
-	menuselect/menuselect --disable chan_ooh323 menuselect.makeopts
-
-	# Utility set is forcibly enabled (bug #358001)
-	menuselect/menuselect --enable smsq menuselect.makeopts
-	menuselect/menuselect --enable streamplayer menuselect.makeopts
-	menuselect/menuselect --enable aelparse menuselect.makeopts
-	menuselect/menuselect --enable astman menuselect.makeopts
-
-	# this is connected, otherwise it would not find
-	# ast_pktccops_gate_alloc symbol
-	menuselect/menuselect --enable chan_mgcp menuselect.makeopts
-	menuselect/menuselect --enable res_pktccops menuselect.makeopts
-
-	# SSL is forcibly enabled, IAX2 & DUNDI are expected to be available
-	menuselect/menuselect --enable pbx_dundi menuselect.makeopts
-	menuselect/menuselect --enable func_aes menuselect.makeopts
-	menuselect/menuselect --enable chan_iax2 menuselect.makeopts
-
-	# SQlite3 is now the main database backend, enable related features
-	menuselect/menuselect --enable cdr_sqlite3_custom menuselect.makeopts
-	menuselect/menuselect --enable cel_sqlite3_custom menuselect.makeopts
-
-	# The others are based on USE-flag settings
-	use_select() {
-		local state=$(use "$1" && echo enable || echo disable)
-		shift # remove use from parameters
-
-		while [[ -n $1 ]]; do
-			menuselect/menuselect --${state} "$1" menuselect.makeopts
-			shift
-		done
-	}
-
-	use_select ais			res_ais
-	use_select alsa			chan_alsa
-	use_select bluetooth	chan_mobile
-	use_select calendar		res_calendar res_calendar_{caldav,ews,exchange,icalendar}
-	use_select curl			func_curl res_config_curl res_curl
-	use_select dahdi		app_dahdibarge app_dahdiras chan_dahdi codec_dahdi res_timing_dahdi
-	use_select freetds		{cdr,cel}_tds
-	use_select gtalk		chan_gtalk
-	use_select http			res_http_post
-	use_select iconv		func_iconv
-	use_select jabber		res_jabber
-	use_select jingle		chan_jingle
-	use_select ldap			res_config_ldap
-	use_select lua			pbx_lua
-	use_select mysql		app_mysql cdr_mysql res_config_mysql
-	use_select odbc			cdr_adaptive_odbc res_config_odbc {cdr,cel,res,func}_odbc
-	use_select osplookup	app_osplookup
-	use_select oss			chan_oss
-	use_select postgres		{cdr,cel}_pgsql res_config_pgsql
-	use_select radius		{cdr,cel}_radius
-	use_select snmp			res_snmp
-	use_select span			res_fax_spandsp
-	use_select speex		{codec,func}_speex
-	use_select srtp			res_srtp
-	use_select syslog		cdr_syslog
-	use_select usb			chan_usbradio
-	use_select vorbis		format_ogg_vorbis
-}
-
-src_compile() {
-	ASTLDFLAGS="${LDFLAGS}" emake
-}
-
-src_install() {
-	mkdir -p "${D}"usr/$(get_libdir)/pkgconfig || die
-	emake DESTDIR="${D}" installdirs
-	emake DESTDIR="${D}" install
-
-	if use radius; then
-		insinto /etc/radiusclient-ng/
-		doins contrib/dictionary.digium
-	fi
-	if use samples; then
-		emake DESTDIR="${D}" samples
-		for conffile in "${D}"etc/asterisk/*.*
-		do
-			chown asterisk:asterisk $conffile
-			chmod 0660 $conffile
-		done
-		einfo "Sample files have been installed"
-	else
-		einfo "Skipping installation of sample files..."
-		rm -f  "${D}"var/lib/asterisk/mohmp3/* || die
-		rm -f  "${D}"var/lib/asterisk/sounds/demo-* || die
-		rm -f  "${D}"var/lib/asterisk/agi-bin/* || die
-		rm -f  "${D}"etc/asterisk/* || die
-	fi
-	rm -rf "${D}"var/spool/asterisk/voicemail/default || die
-
-	# keep directories
-	diropts -m 0770 -o asterisk -g asterisk
-	keepdir	/etc/asterisk
-	keepdir /var/lib/asterisk
-	keepdir /var/run/asterisk
-	keepdir /var/spool/asterisk
-	keepdir /var/spool/asterisk/{system,tmp,meetme,monitor,dictate,voicemail}
-	diropts -m 0750 -o asterisk -g asterisk
-	keepdir /var/log/asterisk/{cdr-csv,cdr-custom}
-
-	newinitd "${FILESDIR}"/1.8.0/asterisk.initd2 asterisk
-	newconfd "${FILESDIR}"/1.8.0/asterisk.confd asterisk
-
-	# install the upgrade documentation
-	#
-	dodoc README UPGRADE* BUGS CREDITS
-
-	# install extra documentation
-	#
-	if use doc
-	then
-		dodoc doc/*.txt
-		dodoc doc/*.pdf
-	fi
-
-	# install SIP scripts; bug #300832
-	#
-	dodoc "${FILESDIR}/1.6.2/sip_calc_auth"
-	dodoc "${FILESDIR}/1.6.2/find_call_sip_trace.sh"
-	dodoc "${FILESDIR}/1.6.2/find_call_ids.sh"
-	dodoc "${FILESDIR}/1.6.2/call_data.txt"
-
-	# install logrotate snippet; bug #329281
-	#
-	insinto /etc/logrotate.d
-	newins "${FILESDIR}/1.6.2/asterisk.logrotate3" asterisk
-}
-
-pkg_postinst() {
-	#
-	# Announcements, warnings, reminders...
-	#
-	einfo "Asterisk has been installed"
-	echo
-	elog "If you want to know more about asterisk, visit these sites:"
-	elog "http://www.asteriskdocs.org/"
-	elog "http://www.voip-info.org/wiki-Asterisk"
-	echo
-	elog "http://www.automated.it/guidetoasterisk.htm"
-	echo
-	elog "Gentoo VoIP IRC Channel:"
-	elog "#gentoo-voip @ irc.freenode.net"
-	echo
-	echo
-	elog "1.6 -> 1.8 changes that you may care about:"
-	elog "http://svn.asterisk.org/svn/${PN}/tags/${PV}/UPGRADE.txt"
-	elog "or: bzless ${ROOT}usr/share/doc/${PF}/UPGRADE.txt.bz2"
-}
-
-pkg_config() {
-	einfo "Do you want to reset file permissions and ownerships (y/N)?"
-
-	read tmp
-	tmp="$(echo $tmp | tr '[:upper:]' '[:lower:]')"
-
-	if [[ "$tmp" = "y" ]] ||\
-		[[ "$tmp" = "yes" ]]
-	then
-		einfo "Resetting permissions to defaults..."
-
-		for x in spool run lib log; do
-			chown -R asterisk:asterisk "${ROOT}"var/${x}/asterisk
-			chmod -R u=rwX,g=rwX,o=    "${ROOT}"var/${x}/asterisk
-		done
-
-		chown -R root:asterisk  "${ROOT}"etc/asterisk
-		chmod -R u=rwX,g=rwX,o= "${ROOT}"etc/asterisk
-
-		einfo "done"
-	else
-		einfo "skipping"
-	fi
-}
diff --git a/net-misc/asterisk/asterisk-10.5.0.ebuild b/net-misc/asterisk/asterisk-10.5.1.ebuild
index b5753d5e4748..e3e2c2bb0e0c 100644
--- a/net-misc/asterisk/asterisk-10.5.0.ebuild
+++ b/net-misc/asterisk/asterisk-10.5.1.ebuild
@@ -1,6 +1,6 @@
 # Copyright 1999-2012 Gentoo Foundation
 # Distributed under the terms of the GNU General Public License v2
-# $Header: /var/cvsroot/gentoo-x86/net-misc/asterisk/asterisk-10.5.0.ebuild,v 1.1 2012/06/06 10:07:45 chainsaw Exp $
+# $Header: /var/cvsroot/gentoo-x86/net-misc/asterisk/asterisk-10.5.1.ebuild,v 1.1 2012/06/15 11:00:19 chainsaw Exp $
 
 EAPI=4
 inherit autotools base eutils linux-info multilib
author	Tony Vroon <chainsaw@gentoo.org>	2012-06-15 11:00:19 +0000
committer	Tony Vroon <chainsaw@gentoo.org>	2012-06-15 11:00:19 +0000
commit	c61f88c4b2e99632e95f014ee77577854bfde898 (patch)
tree	59423ce2eafd442246cb129f7710d5897c59d5e1 /net-misc/asterisk
parent	Add missing RDEPEND on x11-misc/appmenu-qt, wrt bug #420909 by Kirill Elagin ... (diff)
download	historical-c61f88c4b2e99632e95f014ee77577854bfde898.tar.gz historical-c61f88c4b2e99632e95f014ee77577854bfde898.tar.bz2 historical-c61f88c4b2e99632e95f014ee77577854bfde898.zip