Ubuntu
asterisk package

Change logs for asterisk source package in Hirsute

  1. Hirsute (21.04)
  2. Change log 
  • asterisk (1:16.16.1~dfsg-1) unstable; urgency=medium

  * New minor upstream version 16.16.1~dfsg
    - CVE-2020-35776 / AST-2021-001 (Closes: #983158)
      Remote crash in res_pjsip_diversion
    - CVE-2021-26717 / AST-2021-002 (Closes: #983157)
      Remote crash possible when negotiating T.38
    - CVE-2021-26712 / AST-2021-003
      Remote attacker could prematurely tear down SRTP calls
    - CVE-2021-26713 / AST-2021-004
      An unsuspecting WebRTC user could crash Asterisk with multiple
      hold/unhold requests
    - CVE-2021-26906 / AST-2021-005 (Closes: #983159)
      Remote Crash Vulnerability in PJSIP channel driver

 -- Bernhard Schmidt <email address hidden>  Mon, 22 Feb 2021 21:45:24 +0100
  • asterisk (1:16.15.1~dfsg-1) unstable; urgency=medium

  * New upstream version 16.15.1~dfsg
    - CVE-2020-35652 / AST-2020-003 + AST-2020-004 (Closes: #979372)
      Remote crash in res_pjsip_diversion

 -- Bernhard Schmidt <email address hidden>  Sun, 17 Jan 2021 15:56:22 +0100
  • asterisk (1:16.15.0~dfsg-1build2) hirsute; urgency=medium

  * No-change upload to build against net-snmp on armhf.

 -- Sergio Durigan Junior <email address hidden>  Thu, 07 Jan 2021 20:02:48 -0500
  • asterisk (1:16.15.0~dfsg-1build1) hirsute; urgency=medium

  * No-change upload due to net-snmp transition.

 -- Sergio Durigan Junior <email address hidden>  Thu, 07 Jan 2021 10:46:55 -0500
  • asterisk (1:16.15.0~dfsg-1) unstable; urgency=medium

  * New upstream version 16.15.0~dfsg. fixes to CVEs
    - CVE-2020-28327 / AST-2020-001 (Closes: #974712)
      Remote crash in res_pjsip_session
    - CVE-2020-28242 / AST-2020-002 (Closes: #974713)
      Outbound INVITE loop on challenge with different nonce

 -- Bernhard Schmidt <email address hidden>  Mon, 23 Nov 2020 13:19:33 +0100
  • asterisk (1:16.12.0~dfsg-1) unstable; urgency=medium

  * Add new upstream signing key
    F2FC93DB7587BD1FB49E045A5D984BE337191CE7
    Asterisk Development Team <email address hidden>
  * New upstream version 16.12.0~dfsg (Closes: #882145)
  * Update to pjproject 2.10
  * Also update d/source/include-binaries
  * Update Uploaders (Closes: #953442)
  * Fix setting the version number

 -- Bernhard Schmidt <email address hidden>  Tue, 01 Sep 2020 01:15:39 +0200