| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| hack-multiple-app-voicemail | build multiple versions of app_voicemail.so This is a very ugly hack on upstream's Makefiles to allow building multiple variants of app_voicemail. Three variants are created: * app_voicemail.so: plain old filesystem storage that doesn't break existing setups * app_voicemail_imapstorage.so: IMAP storage * app_voicemail_odbcstorage.so: ODBC storage All these conflict with each other and Asterisk will refuse to load them concurrently. They are thus included in three separate and complicting packages. . Patch suggested to upstream but rejected for being "hackish". Though upstream RPM packages include packages that are only somewhat cleaner. |
Faidon Liambotis <paravoid@debian.org> | yes | upstream | 2016-03-19 | |
| astgenkey-security | astgenkey should generate a private key that is not world-readable Upstream has not accepted this patch and chose instead to document this as a known minor issue. |
Lionel Elie Mamane <lionel@mamane.lu> | yes | upstream | 2016-03-19 | |
| sound_files | Avoid downloading extra sound files Asterisk configures several sound files to be installed that are not included in the distribution tarball. Those files are downloaded by the 'install' target. . The exact files to be downloaded is configurable. Here we change the default to avoid downloading any. We believe those should be part of a separate source package (as they rarely change, and have their own versioning). |
Tzafrir Cohen <tzafrir.cohen@xorcom.com> | no | 2016-04-02 | ||
| mpglib | mpglib code originally in asterisk-addons The package asterisk-addons originally included mpglib. After the merge with asterisk, that code is no longer included and needs to be fetched (contrib/scripts/get_mpg_source.sh). This patch includes that fetched source (rev. 202). . TODO: get rid of this code and use libmpg123 or whatever. |
no | http://svn.digium.com/svn/thirdparty/mp3/trunk | 2018-11-17 | ||
| enable_addons | enable modules formly from asterisk-addons The modules under addons/ are originally from the separate asterisk-addons package. As of asterisk 1.8 they are included in the main Asterisk distribution but not enabled by default. this patch enables them, as it seems valid in Debian. . format_mp3.c is not enabled, yet, though: the complete source is not included. See contrib/scripts/get_mp3_source.sh in the source tree. |
Tzafrir Cohen <tzafrir@debian.org> | no | 2016-03-19 | ||
| ilbc_disable | disable building codec_ilbc As we have to strip the ilbc code from asterisk, we need to disable building codec_ilbc and cleaning the ilbc/ directory. . Patch needs to be cleaned-up to be uploaded upstream. . FIXME: module now seems to potentially use libilbc. If it can be packaged into Debian, no reason to remove it. |
Tzafrir Cohen <tzafrir@debian.org> | no | debian | 2016-03-19 | |
| astdatadir | place asterisk read-only data files under /usr/share On Debian read-only resources belong under /usr. The space taken from the writable /var should be minimized. . Upstream prefers defaults to have those files under /var/lib, though supports a separate datadir. |
Tzafrir Cohen <tzafrir@debian.org> | no | 2016-03-19 | ||
| reenable | reenable some drivers | Tzafrir Cohen <tzafrir.cohen@xorcom.com> | no | 2016-03-19 | ||
| no_native_arch.patch | disable building asterisk with -march=native Don't add -march=native to standard CFLAGS. We need a generic binary. |
Tzafrir Cohen <tzafrir.cohen@xorcom.com> | no | debian | ||
| smsq_enable.patch | Enable the smsq application. | Frederic Van Espen <frederic.ve@gmail.com> | no | debian | 2016-03-19 | |
| aelparse_enable.patch | Enable the aelparse application. | Jeremy Lainé <jeremy.laine@m4x.org> | no | debian | 2018-11-17 | |
| systemd.patch | A systemd service Do away with safe_asterisk. But try very hard to let live_ast work with it. |
Tzafrir Cohen <tzafrir@debian.org> | no | 2016-04-02 | ||
| test_framework.patch | Enable the test framework Test modules are normally only enabled in development mode. This patch enables them without the need to enable dev-mode. The modules provide simple tests. Try: asterisk -rx 'test execute all' Those modules should not be confused with the tests in the asterisk-testsute package. |
Tzafrir Cohen <tzafrir@debian.org> | no | 2016-12-23 | ||
| amr.patch | Add AMR and AMR-WB codec modules supporting transcoding To add a codec for SIP/SDP (m=, rtmap, and ftmp), you create a format module in Asterisk: `codec_amr.patch` (for m= and rtmap) and `res/res_format_attr_amr.c` (for fmtp). However, this requires both call legs to support AMR (pass-through only). If one leg does not support AMR, the call has no audio. Or, if you use the pre-recorded voice and music files of Asterisk, these files cannot be heard, because they are not in AMR but in slin. Therefore, this repository adds not just a format module for the audio-codecs AMR and AMR-WB but a transcoding module as well: `codecs/codec_amr.c`. . This is an implementation of IETF [RFC 4867](http://tools.ietf.org/html/rfc4867). Sometimes, AMR is called AMR Narrowband (AMR-NB). AMR Wideband (ITU-T Recommendation G.722.2) is sometimes abbreviated W-AMR ([GSA](http://www.gsacom.com/hdvoice/)). GSMA Mobile [HD Voice](https://www.youtube.com/playlist?&list=PLj1MyDu3jckpSciPQ1Max0W6HDSaY8-n4) is AMR-WB. Research papers comparing AMR and AMR-WB with other audio codecs: [InterSpeech 2010](http://research.nokia.com/files/public/%5B12%5D_Interspeech%202010_Voice%20Quality%20Evaluation%20of%20Recent%20Open%20Source%20Codecs.pdf), [ICASSP 2010](http://research.nokia.com/files/public/%5B11%5D_ICASSP2010_Voice%20Quality%20Evaluation%20of%20Various%20Codecs.pdf), [InterSpeech 2011](http://research.nokia.com/files/public/%5B16%5D_InterSpeech2011_Voice_Quality_Characterization_of_IETF_Opus_Codec.pdf). Further [examples…](http://www.voiceage.com/Audio-Samples-Listening-Room.html) This is free and unencumbered software released into the public domain. . Anyone is free to copy, modify, publish, use, compile, sell, or distribute this software, either in source code form or as a compiled binary, for any purpose, commercial or non-commercial, and by any means. . In jurisdictions that recognize copyright laws, the author or authors of this software dedicate any and all copyright interest in the software to the public domain. We make this dedication for the benefit of the public at large and to the detriment of our heirs and successors. We intend this dedication to be an overt act of relinquishment in perpetuity of all present and future rights to this software under copyright law. . THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. . For more information, please refer to <http://unlicense.org/> |
Alexander Traud <pabstraud@compuserve.com> | no | https://github.com/traud/asterisk-amr | 2016-08-29 | |
| ffmpeg-detection.patch | Modernize autotools FFmpeg linking FFmpeg is a _family_ of libraries sharing an optional base subdir. That is not properly reflected in the autoconf detection logic, and makes it impossible to handle alternate location - e.g. when using Libav. . This patch queries pkg-config, used with recent FFmpeg, for files "libavcodec" and "libswscale", the family members currently used. |
Jonas Smedegaard <dr@jones.dk> | no | debian | 2016-04-02 | |
| ffmpeg-includes.patch | Include subdirs (not main dir) for FFmpeg paths Fix include FFmpeg headers from below /usr/include/ffmpeg/<libname> (this change requires -I/usr/include/ffmpeg). |
Jonas Smedegaard <dr@jones.dk> | no | debian | 2016-03-21 | |
| reproducible-build.patch | reproducible build | Markus Koschany <apo@debian.org> | no | 2022-10-17 | ||
| autoreconf-pjproject.patch | autoreconf pjproject | Markus Koschany <apo@debian.org> | no | 2022-10-17 | ||
| CVE-2022-37325.patch | CVE-2022-37325 | Markus Koschany <apo@debian.org> | no | https://downloads.asterisk.org/pub/security/AST-2022-007.html | 2023-02-22 | |
| CVE-2022-42705.patch | CVE-2022-42705 | Markus Koschany <apo@debian.org> | no | https://downloads.asterisk.org/pub/security/AST-2022-008.html | 2023-02-22 | |
| CVE-2022-42706.patch | CVE-2022-42706 | Markus Koschany <apo@debian.org> | no | https://downloads.asterisk.org/pub/security/AST-2022-009.html | 2023-02-22 | |
| CVE-2023-37457.patch | CVE-2023-37457 | Markus Koschany <apo@debian.org> | no | debian | https://github.com/asterisk/asterisk/commit/a1ca0268254374b515fa5992f01340f7717113fa | 2023-12-23 |
| CVE-2023-49294.patch | CVE-2023-49294 | Markus Koschany <apo@debian.org> | no | debian | https://github.com/asterisk/asterisk/commit/424be345639d75c6cb7d0bd2da5f0f407dbd0bd5 | 2023-12-23 |
| CVE-2023-49786.patch | CVE-2023-49786 | Markus Koschany <apo@debian.org> | no | debian | https://github.com/asterisk/asterisk/commit/d7d7764cb07c8a1872804321302ef93bf62cba05 | 2023-12-23 |
| pjproject-2.13.1.patch | pjproject-2.13.1 Update Asterisk specific patches for embedded pjproject library. Apply the fix for CVE-2023-38703 by updating the tar.bz2 compressed library directly. |
Markus Koschany <apo@debian.org> | no | 2023-12-25 | ||
| CVE-2024-42365.patch | commit faddd99f2b9408b524e5eb8a01589fe1fa282df2 manager.c: Add entries to Originate blacklist Added Reload and DBdeltree to the list of dialplan application that can't be executed via the Originate manager action without also having write SYSTEM permissions. Added CURL, DB*, FILE, ODBC and REALTIME* to the list of dialplan functions that can't be executed via the Originate manager action without also having write SYSTEM permissions. If the Queue application is attempted to be run by the Originate manager action and an AGI parameter is specified in the app data, it'll be rejected unless the manager user has either the AGI or SYSTEM permissions. Resolves: #GHSA-c4cg-9275-6w44 =================================================================== |
George Joseph <gjoseph@sangoma.com> | no | 2024-07-22 | ||
| CVE-2024-42491.patch | commit 50bf8d4d3064930d28ecf1ce3397b14574d514d2 res_resolver_unbound: Test for NULL ub_result in unbound_resolver_callback The ub_result pointer passed to unbound_resolver_callback by libunbound can be NULL if the query was for something malformed like `.1` or `[.1]`. If it is, we now set a 'ns_r_formerr' result and return instead of crashing with a SEGV. This causes pjproject to simply cancel the transaction with a "No answer record in the DNS response" error. The existing "off nominal" unit test was also updated to check this condition. Although not necessary for this fix, we also made ast_dns_resolver_completed() tolerant of a NULL result. Resolves: GHSA-v428-g3cw-7hv9 diff --git a/main/dns_core.c b/main/dns_core.c index b2b9d1b066..7f3f2b6556 100644 |
George Joseph <gjoseph@sangoma.com> | no | 2024-08-12 |