pkgsrc

Automatic conversion of the NetBSD pkgsrc CVS module, use with care

Find a file

jnemeth fc1d4bc105 Update to 1.8.7.1 -- this update fixes AST-2011-012 pkgsrc change: now what sqlite3 has been imported into NetBSD, enable it Asterisk Project Security Advisory - AST-2011-012 Product Asterisk Summary Remote crash vulnerability in SIP channel driver Nature of Advisory Remote crash Susceptibility Remote authenticated sessions Severity Critical Exploits Known No Reported On October 4, 2011 Reported By Ehsan Foroughi Posted On October 17, 2011 Last Updated On October 17, 2011 Advisory Contact Terry Wilson <twilson@digium.com> CVE Name CVE-2011-4063 Description A remote authenticated user can cause a crash with a malformed request due to an unitialized variable. Resolution Ensure variables are initialized in all cases when parsing the request. Affected Versions Product Release Series Asterisk Open Source 1.8.x All versions Asterisk Open Source 10.x All versions (currently in beta) Corrected In Product Release Asterisk Open Source 1.8.7.1, 10.0.0-rc1 Patches Download URL Revision http://downloads.asterisk.org/pub/security/AST-2011-012-1.8.diff 1.8 http://downloads.asterisk.org/pub/security/AST-2011-012-10.diff 10 Links Asterisk Project Security Advisories are posted at http://www.asterisk.org/security This document may be superseded by later versions; if so, the latest version will be posted at http://downloads.digium.com/pub/security/AST-2011-012.pdf and http://downloads.digium.com/pub/security/AST-2011-012.html Revision History Date Editor Revisions Made Asterisk Project Security Advisory - AST-2011-012 Copyright (c) 2011 Digium, Inc. All Rights Reserved. Permission is hereby granted to distribute and publish this advisory in its original, unaltered form.		2011-10-17 23:40:50 +00:00
archivers	Upstream has once again released (or "relased") a new version without	2011-10-13 22:34:56 +00:00
audio	PR/44543 -- recognize any non-zero return value getaddrinfo() as error.	2011-10-17 21:43:27 +00:00
benchmarks	void main	2011-09-14 07:11:33 +00:00
biology	Fix impossible depends.	2011-10-07 03:57:23 +00:00
bootstrap	Not every tar knows -z.	2011-10-04 11:37:38 +00:00
cad	Add pkg-config for gtk2 detection to address bulk build failure.	2011-09-29 18:00:57 +00:00
chat	Can be built with emacs23nox as well.	2011-10-09 02:25:24 +00:00
comms	Update to 1.8.7.1 -- this update fixes AST-2011-012	2011-10-17 23:40:50 +00:00
converters	Update p5-p5-MARC-Charset to 1.33.	2011-10-06 15:06:07 +00:00
cross	Add missing include for strcmp.	2011-09-24 19:31:09 +00:00
databases	+gdbm_compat	2011-10-17 08:45:33 +00:00
devel	Fix dependency pattern	2011-10-17 21:03:29 +00:00
distfiles
doc	Note update of textproc/p5-Feed-Find, devel/p5-XSLoader and	2011-10-17 14:54:35 +00:00
editors	Add DragonFly support.	2011-10-14 09:49:06 +00:00
emulators	PR/29576 -- Use @RCD_SCRIPTS_SHELL@ in rc.d scripts, not /bin/sh	2011-10-07 22:37:02 +00:00
filesystems	Add bin/ulockmgr_server to PLIST.Linux	2011-10-16 23:45:45 +00:00
finance	Update ruby-braintree package to 2.11.0.	2011-09-12 14:53:17 +00:00
fonts	Add tex-cm-unicode{,-doc}.	2011-10-10 22:08:57 +00:00
games	Changes 1.8.6:	2011-10-11 13:15:59 +00:00
geography	Add dependency on sqlite3.	2011-10-09 13:37:39 +00:00
graphics	Changes 1.8.0:	2011-10-16 17:47:49 +00:00
ham	recursive bump from gnome-vfs drop crypto dependency.	2011-07-21 13:05:46 +00:00
inputmethod	Uodate to 14.3	2011-10-12 11:20:46 +00:00
lang	Use PHP_VERSIONS_ACCEPTED instead of PHP_VERSION_REQD to match PBULK_MULTI_LIST.	2011-10-17 11:50:05 +00:00
licenses	Add adobe-flashsupport-license for use with multimedia/libflashsupport	2011-08-05 15:11:29 +00:00
mail	Update p5-MIME-Charset to 1.009.1.	2011-10-16 16:22:41 +00:00
math	Add HOMEPAGE and LICENSE.	2011-10-17 09:27:48 +00:00
mbone	Revision bump after updating perl5 to 5.14.1.	2011-08-14 12:59:47 +00:00
meta-pkgs	Fix build of boost-libs in NetBSD/macppc: 'char' is not signed, so a piece	2011-10-14 01:12:06 +00:00
misc	Update p5-Locale-Maketext-Lexicon to 0.91.	2011-10-17 08:54:18 +00:00
mk	Change the X11_TYPE conditional to work with the switch in the default	2011-10-15 03:15:37 +00:00
multimedia	tell boost-header and boost-lib location to configure.	2011-10-15 13:34:27 +00:00
net	teach the package options for cases where pthreads would be used, but are	2011-10-17 20:14:50 +00:00
news	PR/29576 -- Use @RCD_SCRIPTS_SHELL@ in rc.d scripts, not /bin/sh	2011-10-07 22:37:02 +00:00
packages
parallel	Update my email	2011-10-09 10:02:44 +00:00
pkgtools	Fix support for non-default PKGMANDIR	2011-10-17 05:45:54 +00:00
print	* regist egg-info	2011-10-15 08:33:36 +00:00
regress	Reset maintainer, developer lost his commit bit.	2010-03-21 16:29:38 +00:00
security	PR/42039 -- not available for NetBSD 4 and up.	2011-10-17 19:32:24 +00:00
shells	Update my email	2011-10-09 10:02:44 +00:00
sysutils	Update p5-Sys-SigAction-Changes to 0.15.	2011-10-17 08:52:31 +00:00
templates	Tell users to use "pkg_admin audit" instead of audit-packages.	2010-03-18 10:18:19 +00:00
textproc	Update p5-Feed-Find to 0.07.	2011-10-17 14:52:20 +00:00
time	Update p5-DateTime-Set to 0.31.	2011-10-15 15:17:06 +00:00
wm	The previous build fix for SunOS was incomplete. Remove -ansi as it	2011-10-12 17:39:13 +00:00
www	Update p5-Template-Toolkit-Simple to 0.13.	2011-10-17 14:53:28 +00:00
x11	Update xextproto to 7.2.0. This fixes PR 45464.	2011-10-16 17:05:38 +00:00
Makefile
pkglocate	Fix PR 39648:	2010-11-11 19:56:34 +00:00
README

README

$NetBSD: README,v 1.18 2005/05/07 22:18:28 wiz Exp $

Please see doc/pkgsrc.txt for information.