Skip to content

Commit

Permalink
SECURITY update to 1.8.3.3
Browse files Browse the repository at this point in the history 
- AST-2011-006, shell access via remote authenticated manager
sessions (logged-in manager users can execute shell commands via
the manager interface without having the "system" privilege that
should be required)

- AST-2011-005, DoS with remote unauthenticated sessions (add limits
to prevent unauthenticated users from tying up all available FDs for
the manager interface, SIP-over-TCP, Skinny and the built in HTTP
server).

(updating by way of upstream patch file, the full tar.gz isn't
available yet).
  • Loading branch information
@sthen
sthen committed Apr 21, 2011
1 parent 976a4df commit 7dafd1c
Show file tree
Hide file tree
Showing 2 changed files with 10 additions and 5 deletions.
10 changes: 5 additions & 5 deletions telephony/asterisk/Makefile
View file
Original file line number Diff line number Diff line change
@@ -1,14 +1,14 @@
# $OpenBSD: Makefile,v 1.109 2011/04/15 16:13:24 ajacoutot Exp $
# $OpenBSD: Makefile,v 1.110 2011/04/21 22:28:40 sthen Exp $

SHARED_ONLY= Yes
COMMENT-main= open source multi-protocol PBX and telephony toolkit

VER= 1.8.3.2
DISTNAME= asterisk-${VER:S/beta/-beta/:S/rc/-rc/}
VER= 1.8.3.3
DISTNAME= asterisk-1.8.3.2
#DISTNAME= asterisk-${VER:S/beta/-beta/:S/rc/-rc/}
PATCHFILES= asterisk-1.8.3.3-patch.gz
PKGNAME-main= asterisk-${VER}

REVISION-main= 2

SOUNDS= CORE MOH EXTRA
SOUNDS_CORE= asterisk-core-sounds-en-gsm-1.4.20
SOUNDS_MOH= asterisk-moh-opsound-wav-2.03
Expand Down
5 changes: 5 additions & 0 deletions telephony/asterisk/distinfo
View file
Original file line number Diff line number Diff line change
@@ -1,32 +1,37 @@
MD5 (asterisk-1.8.3.2.tar.gz) = C+4D9EmKYIEUalebURMGMw==
MD5 (asterisk-1.8.3.3-patch.gz) = vahjZUljfK5x/ttQ7QIscQ==
MD5 (asterisk-core-sounds-en-gsm-1.4.20.tar.gz) = XyGAxhZleNMCJj628d77lg==
MD5 (asterisk-core-sounds-en-gsm-1.4.20.tar.gz.sha1) = 4aZTAcb0h9zeG2sOVvVzDA==
MD5 (asterisk-extra-sounds-en-gsm-1.4.11.tar.gz) = VHnLTLgdZ4ME2W815JM6EQ==
MD5 (asterisk-extra-sounds-en-gsm-1.4.11.tar.gz.sha1) = euKCSaScLc2s72YD1p39Zg==
MD5 (asterisk-moh-opsound-wav-2.03.tar.gz) = gnfixpP9BWdzscFeTVIHfQ==
MD5 (asterisk-moh-opsound-wav-2.03.tar.gz.sha1) = AR+k3J/jXcPTTtVXuwQmPw==
RMD160 (asterisk-1.8.3.2.tar.gz) = QbDtUkv5cWn4sXwmMvehQtvt3Cg=
RMD160 (asterisk-1.8.3.3-patch.gz) = F0rqinmbZiGlT7VOmsbHHIQWlTY=
RMD160 (asterisk-core-sounds-en-gsm-1.4.20.tar.gz) = QrmFXULU6TKurS7Ori+xyp/tsIs=
RMD160 (asterisk-core-sounds-en-gsm-1.4.20.tar.gz.sha1) = 9jjgmgvJGKJh4cM4vEIVdnKlNAQ=
RMD160 (asterisk-extra-sounds-en-gsm-1.4.11.tar.gz) = aBcMdp1znWtbNbAPmZrWu/h2+fY=
RMD160 (asterisk-extra-sounds-en-gsm-1.4.11.tar.gz.sha1) = r2FBQo0Mel1qCQPV61rbSFUnkNY=
RMD160 (asterisk-moh-opsound-wav-2.03.tar.gz) = lWaXSoNgUeCPUUEt5QjZK/O+fgI=
RMD160 (asterisk-moh-opsound-wav-2.03.tar.gz.sha1) = D+hFjrIugSleLHkzLWEgvA7kjfM=
SHA1 (asterisk-1.8.3.2.tar.gz) = /EC9UwTM0xDNnMHXNUsPoZN5k8w=
SHA1 (asterisk-1.8.3.3-patch.gz) = xf0GpcQpuqJg+3L8ixVXa+QXjpU=
SHA1 (asterisk-core-sounds-en-gsm-1.4.20.tar.gz) = /1nj3UcJr0j69nws7CiWi9zWLk0=
SHA1 (asterisk-core-sounds-en-gsm-1.4.20.tar.gz.sha1) = 1DqTOIM1s1tS30CW8clyDq+R9Os=
SHA1 (asterisk-extra-sounds-en-gsm-1.4.11.tar.gz) = hpL6YUI7R2nci/p4+vntXveiWbk=
SHA1 (asterisk-extra-sounds-en-gsm-1.4.11.tar.gz.sha1) = 7mrmsEnCtwUNV0J+RJd/3sI3wYE=
SHA1 (asterisk-moh-opsound-wav-2.03.tar.gz) = 9A/W6gPf6Ncq2iVAsiiL/cAGOB0=
SHA1 (asterisk-moh-opsound-wav-2.03.tar.gz.sha1) = y7b1cl1V/jLKmqKzM+N9YSXQ9Ec=
SHA256 (asterisk-1.8.3.2.tar.gz) = 3Z5vgeishjaR6BrPRkMk2LwRIIAcRKcA1p5hR+fI9+w=
SHA256 (asterisk-1.8.3.3-patch.gz) = wl43zrG/4IxJau4B0yEkW9oHeQ5l62lphD1KCtVFLm8=
SHA256 (asterisk-core-sounds-en-gsm-1.4.20.tar.gz) = 6HhpuMXN1zILHPTeUgh58lz4tcLaNwen7v4z4IlbsBc=
SHA256 (asterisk-core-sounds-en-gsm-1.4.20.tar.gz.sha1) = CkpTcoPBJgMHmqgMDqUPfnmfDMz7fQGGuA/DwV+BR3c=
SHA256 (asterisk-extra-sounds-en-gsm-1.4.11.tar.gz) = 1fAxzDHr6+yZzj/PRP+Ue9eye16VZaezphhcLRvaCUw=
SHA256 (asterisk-extra-sounds-en-gsm-1.4.11.tar.gz.sha1) = a0BErk9wQ3/hT5gPUVL6uk6iqitdhAKMAhOrL2XHSR8=
SHA256 (asterisk-moh-opsound-wav-2.03.tar.gz) = RJ+4ENFlAsMFL+3wL353s2IGrFoUXz2s9Bd4Q6L8tTg=
SHA256 (asterisk-moh-opsound-wav-2.03.tar.gz.sha1) = Y8VUFsoRQmGrGvT9EVIyLy7GnZGrw0vEzufTKByuDZc=
SIZE (asterisk-1.8.3.2.tar.gz) = 26825982
SIZE (asterisk-1.8.3.3-patch.gz) = 12063
SIZE (asterisk-core-sounds-en-gsm-1.4.20.tar.gz) = 1784804
SIZE (asterisk-core-sounds-en-gsm-1.4.20.tar.gz.sha1) = 84
SIZE (asterisk-extra-sounds-en-gsm-1.4.11.tar.gz) = 3349898
Expand Down

0 comments on commit 7dafd1c

Please sign in to comment.