acetoneiso (2.4-8) unstable; urgency=medium . [ Bastian Germann ] * Port to Qt6 - d/p/*: Add qt6_port.patch. - d/control: Adapt Build-Depends. - d/rules: Make use of qmake6 and Qt6's lrelease. . [ Sven Geuer ] * d/p/*: - Add further corrections to correct-spelling-errors.patch. - In replace_poweriso.patch, update hint to download poweriso. - Add patch to update manual regarding downloading poweriso. * d/control: - Drop 'Priority: optional'. - Bump debhelper-compat to 14. - Bump Standards-Version to 4.7.4. * d/copyright: Bump packaging copyright years. amide (1.1.0-0.1) unstable; urgency=medium . * Non-maintainer upload * New upstream version 1.1.0 (Closes: #1141668) asterisk (1:22.10.0+dfsg+~cs6.17.60671434-3) unstable; urgency=medium . [ Martin Rampersad ] * update reproducible build patch to include xml asterisk (1:22.10.0+dfsg+~cs6.17.60671434-2) unstable; urgency=medium . * use debhelper compatibility level 14 (not 13) * update copyright info: + drop unused License section (duplicate of HPND-sell-variant bogusly labeled MIT) + update coverage * add solved CVEs to previous changelog entries; closes: bug#1135620, thanks to Thorsten Alteholz * update source helper tool copyright-check asterisk (1:22.10.0+dfsg+~cs6.17.60671434-1) unstable; urgency=medium . [ upstream ] * new release . [ Jonas Smedegaard ] * update watch file: bump version for embedded pjproject * unfuzz patches * update copyright info: update coverage * update source helper tool copyright-check asterisk (1:22.9.0+dfsg+~cs6.16.60671434-1) unstable; urgency=medium . [ upstream ] * new release . [ Jonas Smedegaard ] * update watch: fixate on newer pjproject * unfuzz patches * declare compliance with Debian Policy 4.7.4 * update copyright info: update coverage asterisk (1:22.8.2+dfsg+~cs6.15.60671435-1) unstable; urgency=high . [ upstream ] * new release; CVE-2026-23738 CVE-2026-23739 CVE-2026-23740 CVE-2026-23741; closes: bug#1127438, thanks to Salvatore Bonaccorso . [ Jonas Smedegaard ] * update copyright info: + license patches same as main upstream license * set urgency=high due to security-related bugfixes asterisk (1:22.8.0+dfsg+~cs6.15.60671435-1) unstable; urgency=medium . [ upstream ] * new release . [ Jonas Smedegaard ] * stop superfluously set fields Rules-Requires-Root Priority * declare compliance with Debian Policy 4.7.3 * update copyright info: + avoid any .git* files when repackaging source + update coverage * update watch file: + use Uversion-Mangle: auto (not custom regex) + use Dversion-Mangle: auto + use Repacksuffix: +dfsg (not ~dfsg) * unfuzz patches * update git-buildpackage config: + filter out debian subdir + stop superfluously filter out .git* files asterisk (1:22.7.0~dfsg+~cs6.15.60671435-1) unstable; urgency=medium . [ upstream ] * new release . [ Jonas Smedegaard ] * unfuzz patch asterisk (1:22.6.0~dfsg+~cs6.15.60671435-1) unstable; urgency=medium . [ upstream ] * new release . [ Bernhard Schmidt ] * remove myself as uploader . [ Benedikt Wildenhain ] * add myself as uploader . [ Jonas Smedegaard ] * drop patch cherry-picked upstream, obsoleted by upstream changes asterisk (1:22.5.2~dfsg+~cs6.15.60671435-1) unstable; urgency=medium . [ upstream ] * new release(s) + A specifically malformed Authorization header in an incoming SIP request can cause Asterisk to crash CVE-2025-57767; closes: bug#1112470, thanks to Salvatore Bonaccorso . [ Jonas Smedegaard ] * update copyright info: + strip upstream-autogenerated file README.html from repackaged source * update watch file: use file format 5 asterisk (1:22.5.1~dfsg+~cs6.15.60671435-1) unstable; urgency=medium . [ upstream ] * new release(s) + test for missing semicolon in res_stir_shaken Identity header; CVE-2025-49832; closes: bug#1110317, thanks to Salvatore Bonaccorso asterisk (1:22.4.1~dfsg+~cs6.15.60671435-2) unstable; urgency=medium . * build-depend on libcrypt-dev; closes: bug#1107016, thanks to Helmut Grohne asterisk (1:22.4.1~dfsg+~cs6.15.60671435-1) unstable; urgency=medium . [ upstream ] * new release(s) + add option to restrict shell access from remote consoles; CVE-2025-47780; closes: bug#1106530, thanks to Salvatore Bonaccorso + mask control characters in received From display name; CVE-2025-47779; closes: bug#1106528, thanks to Salvatore Bonaccorso . [ Chris Maj ] * remove IMAP voicemail backend, because libc-client2007e is gone; stop build-depend on libc-client2007e-dev; closes: bug#1103048, thanks to Chris Hofstaedtler * add self as uploader . [ Jonas Smedegaard ] * unfuzz patches * update copyright info: update coverage asterisk (1:22.3.0~dfsg+~cs6.15.60671435-1) unstable; urgency=medium . [ upstream ] * new release asterisk (1:22.3.0~~rc1~dfsg+~cs6.15.60671435-1) unstable; urgency=medium . [ upstream ] * new prerelease . [ Jonas Smedegaard ] * unfuzz patches * declare compliance with Debian Policy 4.7.2 asterisk (1:22.2.0~dfsg+~cs6.15.60671435-2) unstable; urgency=medium . * add patch cherry-picked upstream to fix res_config_pgsql regression that removed dbname config; closes: bug#1098486, thanks to Andrey N. Abelev * declare compliance with Debian Policy 4.7.1 asterisk (1:22.2.0~dfsg+~cs6.15.60671435-1) unstable; urgency=medium . [ upstream ] * new release . [ Jonas Smedegaard ] * update watch file: track pjproject 2.15.1 * update and unfuzz patches * update copyright info: update coverage asterisk (1:22.1.1~dfsg+~cs6.14.60671435-1) unstable; urgency=medium . [ upstream ] * new release + Restrict ListCategories to the configuration directory; CVE-2024-53566 . [ Jonas Smedegaard ] * update git-buildpackage config: + avoid variable abstraction in usage comment asterisk (1:22.1.0~dfsg+~cs6.14.60671435-1) unstable; urgency=medium . [ upstream ] * new release . [ Jonas Smedegaard ] * update and trust only upstream team signing key 5D984BE337191CE7 * update copyright info: update coverage asterisk (1:22.0.0~dfsg+~cs6.14.60671435-1) unstable; urgency=medium . [ upstream ] * new release asterisk (1:22.0.0~~rc2~dfsg+~cs6.14.60671435-1) experimental; urgency=medium . [ upstream ] * new prerelease(s) . [ Jonas Smedegaard ] * update and unfuzz patches * adapt build routines and add NEWS entry related to no longer provided modules app_macro chan_sip * stop build-depend on libasound2-dev; stop mention ALSA in long description (module chan_alsa not provided for some time) * update copyright info: update coverage * cleanup new upstream hint file .lastclean * fix handle prerelease changelog file asterisk (1:20.9.3~dfsg+~cs6.14.60671435-1) unstable; urgency=high . [ upstream ] * new release(s) + add entries to Originate blacklist; CVE-2024-42365; closes: bug#1078574, thanks to Salvatore Bonaccorso + test for NULL ub_result in unbound_resolver_callback; CVE-2024-42491 . [ Jonas Smedegaard ] * fix minor privilege escalation; thanks to Niels Galjaard * update watch file: track mp3 component from git clone * unfuzz patch 2012 * set urgency=high due to security-related bugfixes asterisk (1:20.8.1~dfsg+~cs6.14.40431414-1) unstable; urgency=medium . [ upstream ] * new release + use PJProject 2.14.1, which fixes Use-after-free in SRTP media transport; CVE-2023-37457 CVE-2023-38703; closes: bug#1059303, thanks to Moritz Mühlenhoff + fix regression issues with DTLS client check; closes: bug#1068296, thanks to Oleksandr Kozmenko . [ Jonas Smedegaard ] * update watch file: + track only LTS releases + bump to track pjproject 2.14.1 * unfuzz patches * update copyright info: update coverage * declare compliance with Debian Policy 4.7.0 * create and restrict access to cache dir; closes: bug#1072739, thanks to Bastian Triller * fix rotate main logfiles, as logfiles use suffix .log since Asterisk 19; thanks to James Bottomley (see bug#1024822) asterisk (1:20.6.0~dfsg+~cs6.13.40431414-2) unstable; urgency=medium . * update patch 2016 to avoid excessive logging; closes: bug#1060275, thanks to Daniel asterisk (1:20.6.0~dfsg+~cs6.13.40431414-1) unstable; urgency=medium . [ upstream ] * new release . [ Jonas Smedegaard ] * unfuzz patches * update copyright info: update coverage * build-depend on libjwt-dev asterisk (1:20.5.2~dfsg+~cs6.13.40431414-1) unstable; urgency=medium . [ upstream ] * new release . [ Jonas Smedegaard ] * use systemd.pc to place systemd service unit; build-depend on systemd-dev; closes: bug#1059180, thanks to Chris Hofstaedtler asterisk (1:20.5.1~dfsg+~cs6.13.40431414-1) unstable; urgency=high . [ upstream ] * new release + fixes these upstream bugs: CVE-2023-49294 CVE-2023-49786; closes: bug#1059032, #1059033, thanks to Salvatore Bonaccorso . [ Jonas Smedegaard ] * fix enable opus codec; build-depend on libopusenc-dev; closes: bug#1025165, thanks to Paweł Bogusławski, Faidon Liambotis and Athos Ribeiro * set urgency=high due to multiple security bugfixes asterisk (1:20.5.0~dfsg+~cs6.13.40431414-1) unstable; urgency=medium . [ upstream ] * new release . [ Jonas Smedegaard ] * unfuzz patches asterisk (1:20.4.0~dfsg+~cs6.13.40431414-2) unstable; urgency=medium . * build-depend on liblua5.1-dev (not liblua5.2-dev); closes: bug#1050625, thanks to Bastian Germann and David * update DEP-3 patch headers asterisk (1:20.4.0~dfsg+~cs6.13.40431414-1) unstable; urgency=medium . [ upstream ] * new release . [ Jonas Smedegaard ] * stop depend on lsb-base * update watch file: + fixate component pjproject at upstream release 2.13.1 * unfuzz patches * update copyright info: update coverage asterisk (1:20.3.0~dfsg+~cs6.13.40431413-1) unstable; urgency=medium . [ upstream ] * new release . [ Jonas Smedegaard ] * unfuzz patches * fix cleanup to support double build; thanks to ideal.bowl5022 * generate core documentation from markdown sources; skip generate manpage when nodoc is set; build-depend on cmark-cfm asterisk (1:20.2.1~dfsg+~cs6.13.40431413-1) unstable; urgency=medium . [ upstream ] * new release . [ Jonas Smedegaard ] * update watch file: + fixate component pjproject at upstream release 2.13 * update copyright info: update coverage * unfuzz patches asterisk (1:20.1.0~dfsg+~cs6.12.40431414-1) unstable; urgency=medium . [ upstream ] * new release asterisk (1:20.1.0~~rc2~dfsg+~cs6.12.40431414-1) experimental; urgency=medium . [ upstream ] * new pre-release . [ Jonas Smedegaard ] * update copyright info: update coverage * declare compliance with Debian Policy 4.6.2 asterisk (1:20.0.1~dfsg+~cs6.12.40431414-1) unstable; urgency=high . [ upstream ] * new release * closes: bug#1017004, thanks to Neil Williams; also fixes these upstream bugs: ASTERISK-30103 ASTERISK-30176 ASTERISK-30244 ASTERISK-30338 CVE-2022-37325 CVE-2022-42706 CVE-2022-42705 CVE-2022-39244 CVE-2022-31031 GHSA-26j7-ww69-c4qj GHSA-fq45-m3f7-3mhj . [ Jonas Smedegaard ] * fix build module chan_sip; closes: bug#1024443, thanks to James Bottomley * add NEWS entry about new AMI live_dangerously option * set urgency=high due to multiple security bugfixes asterisk (1:20.0.0~dfsg+~cs6.12.40431414-2) unstable; urgency=medium . * re-release for building with auto-builder asterisk (1:20.0.0~dfsg+~cs6.12.40431414-1) unstable; urgency=medium . [ upstream ] * new release asterisk (1:20.0.0~~rc2~dfsg+~cs6.12.40431414-1) experimental; urgency=medium . [ upstream ] * new pre-release asterisk (1:20.0.0~~rc1~dfsg+~cs6.12.40431414-1) experimental; urgency=medium . [ upstream ] * new pre-release . * update lintian overrides * update copyright info: + fix separate License section from corresponding Files section * update watch file: + track upstream branch 20 (not 18) + fix avoid secondary capture groups, apparently significant nowadays + simplify uversionmangle * drop patch cherry-picked upstream now applied * unfuzz patches * set Rules-Requires-Root: no * stop install modules dropped upstream: app_dahdiras app_mysql cdr_mysql asterisk (1:18.14.0~dfsg+~cs6.12.40431414-1) unstable; urgency=medium . [ upstream ] * new release . [ Jonas Smedegaard ] * update watch file: simplify regex * relax to build-depend on default-libmysqlclient-dev for all architectures * unfuzz patches asterisk (1:18.14.0~~rc1~dfsg+~cs6.12.40431414-1) unstable; urgency=medium . [ upstream ] * new pre-release; embeds an updated PJProject, fixing multiple security issues; CVE-2022-24764 CVE-2022-24763 CVE-2022-24786 CVE-2022-24792 CVE-2022-24793; closes: bug#1014976 . [ Jonas Smedegaard ] * update watch file: + fixate component pjproject at upstream release 2.12.1 + track pre-releases * update copyright info: + update primary Source URI + update coverage asterisk (1:18.12.0~dfsg+~cs6.12.40431413-1) unstable; urgency=medium . [ upstream ] * new release . [ Jonas Smedegaard ] * update watch file: + fixate component pjproject at upstream release 2.12 (not asterisk fork of 2.10) * update copyright info: update coverage * update and unfuzz patches * declare compliance with Debian Policy 4.6.1 asterisk (1:18.11.2~dfsg+~cs6.10.40431413-1) unstable; urgency=medium . [ upstream ] * new release . [ Jonas Smedegaard ] * update copyright info: update coverage asterisk (1:18.11.1~dfsg+~cs6.10.40431413-1) unstable; urgency=medium . [ upstream ] * new release . [ Jonas Smedegaard ] * use semantic newlines in long description and copyright fields * stop provide module chan_vpb failing to build: + add patch cherry-picked upstream to remove deprecated module chan_vpb + drop binary package asterisk-vpb + stop build-depend on libvpb-dev + add notice in NEWS * update and unfuzz patches asterisk (1:18.10.1~dfsg+~cs6.10.40431411-1) unstable; urgency=medium . [ upstream ] * new release asterisk (1:18.10.0~dfsg+~cs6.10.40431411-2) unstable; urgency=medium . * fix teardown function in autopkgtest * fix build module app_macro, and simplify build configuration: + revert build rules to explicitly set menuselect target file + reduce and rename patch 2004 + drop related obsolete patches 2003 2005 2007 2009 2017 closes: bug#1005381, thanks to James Bottomley * drop unused obsolete h323 patches 1002 1003 1005 * omit build-depending on default-libmysqlclient-dev for architectures where the package is unavailable asterisk (1:18.10.0~dfsg+~cs6.10.40431411-1) unstable; urgency=medium . [ upstream ] * new release . [ Jonas Smedegaard ] * drop patches cherry-picked upstream now applied * unfuzz patches * update TODOs asterisk (1:18.9.0~dfsg+~cs6.10.40431411-1) experimental; urgency=medium . [ upstream ] * new release(s) . [ Jonas Smedegaard ] * update watch file: track upstream branch 18 (not 16) * unfuzz patches * update copyright info: update coverage * package asterisk-modules now include modules app_voicemail app_voicemail_imap app_voicemail_odbc; drop packages asterisk-voicemail asterisk-voicemail-imapstorage asterisk-voicemail-odbcstorage; add NEWS entry that users of imap or odbc variant need to adjust configuration * adjust rules to explicitly install library headers asterisk (1:16.23.0~dfsg+~cs6.10.40431411-1) unstable; urgency=medium . * embed project asterisk-opus as component; add patches 2015 2016 to integrate opus module with asterisk; integrate opus module with build rules; have asterisk-modules replace and break asterisk-opus * update copyright info: update coverage * relax to build-depend unversioned on libjansson-dev: required version satisfied in all supported Debian releases * build-depend on libneon27-dev (not libneon27-gnutls-dev, with libneon27-dev only as fallback); drop fallback build-dependencies for libcurl4-openssl-dev libradcli-dev * build-depend on liblua5.2-dev (not liblua5.1-0-dev) * build-depend on libcodec2-dev libfftw3-dev libsndfile1-dev asterisk (1:16.23.0~dfsg+~cs6.10.20220309-2) unstable; urgency=medium . * update debhelper script dh_asterisk: + fix move excess paragraphs from POD section NAME to DESCRIPTION + fix reference man page debhelper(7) (not bogus debhelper(1) + add POD section COPYRIGHT AND LICENSE + simplify POD section SYNOPSIS + drop POD sections OPTIONS (superfluous) and NOTES (bogus) + fix typo in POD section DESCRIPTION + extend POD section DESCRIPTION to mention dh-sequence-asterisk (inspired by POD of dh_perl_openssl) * provide virtual package asterisk-abi-* (not asterisk-*), and have dh_asterisk generate matching package variable ${asterisk:Depends} (not the core less intuitive ${asterisk:ABI}) * generate and install manpage for dh_asterisk; build-depend on perl * cherry-pick bugfix patches upstream; unfuzz remaining patches asterisk (1:16.23.0~dfsg+~cs6.10.20220309-1) unstable; urgency=medium . * finalize and install debhelper script dh_asterisk; have asterisk-dev depend on debhelper perl:any, and provide virtual package dh-sequence-asterisk * relax to generate temporary PJPROJECT tarball sloppily: reproducibility or stable md5sum unneeded * fix avoid insecure hardcoded path below /tmp during build * rename and renumber patches; add file debian/patches/README to source documenting patch naming micro policy * drop vp8 patch, superseded by package asterisk-opus * embed project asterisk-amr as component; drop patch amr * embed project mp3 as component; drop patch mpglib * update copyright info: + fix avoid bdimad files from embedded PJPROJECT when repackaging upstream source: not freely licensed + update coverage * unfuzz patches * integrated embedded project mp3 with build rules * add patches 2011 2012 to integrate module amr with asterisk; update build rules to integrate module amr code files * add patch 2013 to integrate mp3 module with asterisk; update build rules to integrate mp3 module * add/update DEP-3 patch headers * add patch 2014 to avoid non-free PJPROJECT audio device driver bdimad asterisk (1:16.23.0~dfsg+~2.10-1) unstable; urgency=medium . [ upstream ] * new release(s) . [ Jonas Smedegaard ] * update git-buildpackage config: + filter-out any .git* file + use DEP14 branch naming scheme + add usage comment * resolve PJPROJECT version from embedded source * update copyright info: update coverage * drop patches cherry-picked upstream now applied * update and unfuzz patches * fix relax autopkgtest: set allow-stderr * stop set obsolete menuselect option codec_opus_open_source asterisk (1:16.16.1~dfsg+~2.10-2) unstable; urgency=medium . * fix sysV init file to align with mariadb (not mysql); closes: bug#1003925, thanks to Roel van Meer * fix silently broken patch systemd; closes: bug#985314, thanks to Sergio Durigan Junior * unfuzz patches, with shortening quilt options * Trim trailing whitespace. * Use secure URI in Homepage field. * Update renamed lintian tag names in lintian overrides. * Drop transition for old debug package migration. * stop set CFLAGS=-fgnu89-inline, as GCC 5.x was supported upstream since late 2015 (see also bug#777782) * explicitly disable BUILD_NATIVE, and stop set CFLAGS and LDFLAGS in configure (only in make menuselect) * tighten bug closures in changelog, for slightly better readability and to avoid confusing lintian-brush * stop export build flags: they are passed as arguments * let dh_auto_config resolve core configure options * revive upstream optimization flags unless DEB_BUILD_OPTIONS=noopt * support DEB_BUILD_OPTIONS=terse * fix install file CHANGES as upstream changelog, and more detailed ChangeLog only with asterisk-doc * use debhelper compatibility level 13 (not 10); stop install duplicates in package asterisk-doc now that its install path coincide with package asterisk; build-depend on debhelper-compat (not debhelper) * adapt install routines and helper scripts to use multiarch paths; add NEWS entry about this change * fix install phoneprov XML files * explicitly list a few images, contrib scripts and sample website as not-installed * fix install a manpage (not corresponding script) into manpage directory * install main header file only below /usr/include (i.e. drop transitional symlinking done in 2008) * install most possible manpages from upstream-installed locations, to ease detecting missed install files * update copyright info: + use SPDX shortname Apache-2.0 + drop unused License section LGPL-2.1 + fix Files section for codecs/gsm, covering both left-truncating wildcard and an explicit file overriding right-truncating wildcard, to list it _after_ right-truncating wildcard Files sections * fix have asterisk pre-depend on misc:Pre-Depends, needed by systemd calls in maintainer scripts asterisk (1:16.16.1~dfsg+~2.10-1) unstable; urgency=medium . * update copyright info: + use Reference field (not License-Reference); tighten lintian overrides + fix add License fields GPL-2+ GPL-3+ + fix interpret unversioned GPL/LGPL to mean any version + add comment about ambiguous statement for file include/jitterbuf.h + normalize copyright holders lists + fix list all wildcard directories (i.e. right truncation) before wildcard files (i.e. left truncation) + normalize files lists + add coverage for my packaging contributions + update coverage + refine source repackaging hints: stop avoid files no longer included upstream exclude non-DFSG pjproject files + use more SPDX(ish) shortnames + sort License sections alphabetically + fix cover pjproject files; drop non-autoritative file debian/copyright.pjproject + update coverage + declare pjproject source URI * update watch file: + stop force repackaging; stop set compression + set dversionmangle=auto + set pgpmode=auto (and stop set pgpsigurlmangle) + tighten match pattern + update usage comment * embed pjproject: + define as component with git-buildpackage and uscan + build from embedded files + stop include manually prepared embedded tarball + drop obsolete patch autoreconf-pjproject * simplify source helper script copyright-check * drop file README.source from source: packaging no longer non-standard asterisk (1:16.16.1~dfsg-4) unstable; urgency=medium . [ Utkarsh Gupta ] * Set default systemd config to avoid console output to syslog. (Closes: #985314, #971090) asterisk (1:16.16.1~dfsg-3) unstable; urgency=medium . [ Bernhard Schmidt ] * Cherry-Pick app_mp3: Force output to 16 bits in mpg123. Thanks to Jens Bürger (Closes: #996402) . [ Athos Ribeiro ] * Fix missing build of the AMR codec, add autopkgtest (Closes: #986013) . [ Hugh McMaster ] * Cherry-pick an upstream patch to remove the AC_HEADER_STDC macro from configure.ac. The macro is obsolete and a no-op with autoconf 2.70 (Closes: #997136) asterisk (1:16.16.1~dfsg-2) unstable; urgency=high . * CVE-2021-32558 / AST-2021-008 (Closes: #991710) If the IAX2 channel driver receives a packet that contains an unsupported media format it can cause a crash to occur in Asterisk * CVE-2021-32686 / AST-2021-009 (Closes: #991931) pjproject/pjsip: crash when SSL socket destroyed during handshake asterisk (1:16.16.1~dfsg-1) unstable; urgency=medium . * New minor upstream version 16.16.1~dfsg - CVE-2020-35776 / AST-2021-001 (Closes: #983158) Remote crash in res_pjsip_diversion - CVE-2021-26717 / AST-2021-002 (Closes: #983157) Remote crash possible when negotiating T.38 - CVE-2021-26712 / AST-2021-003 Remote attacker could prematurely tear down SRTP calls - CVE-2021-26713 / AST-2021-004 An unsuspecting WebRTC user could crash Asterisk with multiple hold/unhold requests - CVE-2021-26906 / AST-2021-005 (Closes: #983159) Remote Crash Vulnerability in PJSIP channel driver asterisk (1:16.15.1~dfsg-1) unstable; urgency=medium . * New upstream version 16.15.1~dfsg - CVE-2020-35652 / AST-2020-003 + AST-2020-004 (Closes: #979372) Remote crash in res_pjsip_diversion asterisk (1:16.15.0~dfsg-1) unstable; urgency=medium . * New upstream version 16.15.0~dfsg. fixes to CVEs - CVE-2020-28327 / AST-2020-001 (Closes: #974712) Remote crash in res_pjsip_session - CVE-2020-28242 / AST-2020-002 (Closes: #974713) Outbound INVITE loop on challenge with different nonce asterisk (1:16.12.0~dfsg-1) unstable; urgency=medium . * Add new upstream signing key F2FC93DB7587BD1FB49E045A5D984BE337191CE7 Asterisk Development Team * New upstream version 16.12.0~dfsg (Closes: #882145) * Update to pjproject 2.10 * Also update d/source/include-binaries * Update Uploaders (Closes: #953442) * Fix setting the version number asterisk (1:16.10.0~dfsg-1) unstable; urgency=medium . * Team upload. * d/watch: use https instead of http, it is more secure * New upstream version 16.10.0~dfsg * Remove patches applied by upstream and refresh the remaining ones - Patches applied by upstream: AST-2019-002.patch and AST-2019-003.patch * Repack pjproject version 2.9 * d/TODO.Debian: rename to d/TODO, thanks to lintian * d/README.Debian: fix a typo, thanks to lintian * d/rules: do not use dpkg-parsechangelog to get source package version * d/copyright: - Update years of the upstream copyright - Remove unused paragraphs and files dropped by upstream - Use https instead of http in Format and Source fields asterisk (1:16.2.1~dfsg-2) unstable; urgency=high . * AST-2019-002 / CVE-2019-12827 Buffer overflow in res_pjsip_messaging (Closes: #931980) * AST-2019-003 / CVE-2019-13161 Remote Crash Vulnerability in chan_sip (Closes: #931981) asterisk (1:16.2.1~dfsg-1) unstable; urgency=medium . * New upstream version 16.2.1~dfsg - CVE-2019-7251 / AST-2019-001 (Closes: #923690) Remote crash vulnerability with SDP protocol violation * Bump dependency on libjansson-dev to >= 2.11 (required by upstream) asterisk (1:16.2.0~dfsg-1) unstable; urgency=medium . * New upstream version 16.2.0~dfsg asterisk (1:16.1.1~dfsg-1) unstable; urgency=medium . Upload new major version to unstable . [ Bernhard Schmidt ] * New upstream version 16.1.1 (Closes: #886984, #917481) - build with embedded pjproject 2.8 (dfsg-repacked) - Add lintian overrides for bundled library - Reenable app_macro, many dialplans need it * Update d/watch for Asterisk 16.x * Add signing key for Chris Savinovich * New upstream version 16.1.0~dfsg * README.Debian: Fix a typo found by lintian * Drop libsqlite0-dev, deprecated * Do not load any local channel drivers by default (Closes: #821392) * asterisk.service: Attempt to run with realtime priority by default (Closes: #801629) * Improve/fix some raceconditions in sysv-initscript. Thanks to Walter Doekes (Closes: #778746) . [ Rob Thomas ] * Build-Depend on libunbound-dev for async DNS asterisk (1:16.1.0~dfsg-4) experimental; urgency=medium . * Update build-deps - Revert mariadb-10.3 change, not necessary anymore - Add libsnmp-dev again, works now - Add libosptk-dev for Open Settlement Protocol, see Bug#786973. Not sure yet whether we will keep this for unstable. - Drop libsqlite0-dev, deprecated * Do not load any local channel drivers by default (see #821392) * asterisk.service: Attempt to run with realtime priority by default (see #801629) * Improve/fix some race-conditions in sysv-initscript. Thanks to Walter Doekes (see #778746) asterisk (1:16.1.0~dfsg-3) experimental; urgency=medium . * Adjust MySQL build-dep for current mariadb-10.3 breakage * d/p/autoreconf-pjproject: also update config.guess and config.sub, that should REALLY fix the FTBFS now * Restore previous pjproject md5sum on dh_clean, allows package to be built twice * README.Debian: Fix a typo found by lintian * Add lintian override for bundled libasteriskpj asterisk (1:16.1.0~dfsg-2) experimental; urgency=medium . * Add patch to rerun autoconf in third_party/pjproject, hopefully fixes FTBFS on new architectures like ppc64el asterisk (1:16.1.0~dfsg-1) experimental; urgency=medium . [ Bernhard Schmidt ] * New upstream version 16.1.0~dfsg * Update d/watch for Asterisk 16.x * Build with embedded pjproject 2.8 (dfsg-repacked) * Reenable app_macro, many dialplans need it * Fix autopkgtest by parsing XML results * Disable libsnmp-dev temporarily . [ Rob Thomas ] * Update patches for Asterisk 16.0.1 * Build-Depend on libunbound-dev for async DNS asterisk (1:13.23.1~dfsg-2) unstable; urgency=medium . * Fix autopkgtest by parsing XML results (Closes: #909689) asterisk (1:13.23.1~dfsg-1) unstable; urgency=medium . * New upstream version 13.23.1~dfsg - CVE-2018-17281 / AST-2018-009 (Closes: #909554) Remote crash vulnerability in HTTP websocket upgrade * Add lintian overrides for modules asterisk (1:13.22.0~dfsg-2) unstable; urgency=medium . * Fix/enable autopkgtest - Do not log disabled tests to stderr - Look at the correct line in the summary for failed tests asterisk (1:13.22.0~dfsg-1) unstable; urgency=medium . * New upstream version 13.22.0~dfsg - CVE-2018-12227 / AST-2018-008 (Closes: #902954) PJSIP endpoint presence disclosure when using ACL - pjsip: Increase maximum number of usable ciphers (Closes: #897412) * Drop d/p/no_uname, not necessary anymore * Drop d/p/radcli-detection.patch, applied upstream * Fix d/p/hack-multiple-app-voicemail for upstream libtdl drop * Unfuzz d/p/amr.patch and d/p/ffmpeg-detection.patch * Fix FTBFS due to wrong filename for dh_installdocs (Closes: #903412) asterisk (1:13.20.0~dfsg-1) unstable; urgency=medium . * New upstream version 13.20.0 (Closes: #891227, #891228) * Reorganize upstream GPG keys - Split individual signing keys in separate files - Add new key for Ben Ford : 0x073B0C1FC9B2E352 - Add new key for Joshua Colp : 0xCDBEE4CC699E200EB4D46BB79E76E3A42341CE04 * Fix missing/broken Closes: in previous changelog * Install realtime database schema into asterisk-doc * Point Vcs-* to salsa asterisk (1:13.18.5~dfsg-1) unstable; urgency=medium . * New upstream release: - CVE-2017-17850 / AST-2017-014 (closes: #885072) - AST-2017-012: Remote Crash Vulnerability in RTCP Stack * Re-add support for snmp (Closes #851738) * Don't load dundi, mgcp, skinny and unistim by default * Avoid parallel build in 'make install' * tests: realpath is now in coreutils * asttestmods: enable res_pjsip_pubsub tests * asttestmods: run asterisk as user asterisk * asttestmods: disable module test_cel for now asterisk (1:13.18.3~dfsg-1) unstable; urgency=medium . * New upstream version 13.18.3~dfsg - CVE-2017-17090 / AST-2017-013 DOS Vulnerability in Asterisk chan_skinny (Closes: #883342) * Drop duplicate filter line from d/gbp.conf asterisk (1:13.18.1~dfsg-1) unstable; urgency=medium . * New upstream version 13.18.1~dfsg - CVE-2017-16671 / AST-2017-010 Buffer overflow in CDR's set user (Closes: #881257) - CVE-2017-16672 / AST-2017-011 Memory/File Descriptor/RTP leak in pjsip session resource (Closes: #881256) - Drop gmime-3.x and srtp 2.1 support patches applied upstream - Drop pjsip_unresolved_symbol.patch applied upstream * reproducibility: Sort order of input files for core-en_US.xml generation * Drop dh --with autotools_dev, default in compat 10 * Add Multi-Arch: foreign to -dev and -doc * Remove deprecated priority extra asterisk (1:13.17.2~dfsg-2) unstable; urgency=medium . * Build against libsrtp2 - Add versioned b-d to pjproject 2.7 built with libsrtp2 - d/p/libsrtp-2.1.x.patch: Upstream patch to support libsrtp 2.1.x * Transition to gmime 3.0 (Closes: #867346) - d/p/gmime-3.0.patch: Upstream patch to support gmime 3.0 * Bump Standards-Version to 4.1.1, drop obsolete build-deps * Fix reproducible builds by overwriting kernel version and machine architecture asterisk (1:13.17.2~dfsg-1) unstable; urgency=high . * New upstream version 13.17.2~dfsg - CVE-2017-14603 / AST-2017-008 This is a follow-up for AST-2017-005: RTP/RTCP information leak improving robustness of the security fix and fixing a regression with re-INVITEs (Closes: #876328) asterisk (1:13.17.1~dfsg-1) unstable; urgency=high . * New upstream version 13.17.1, fixing three CVEs - CVE-2017-14099 / AST-2017-005 Media takeover in RTP stack ("RTP bleed") (Closes: #873907) - CVE-2017-14100 / AST-2017-006 Shell access command injection in app_minivm (Closes: #873908) - CVE-2017-14098 / AST-2017-007 Remote Crash Vulerability in res_pjsip (Closes: #873909) asterisk (1:13.17.0~dfsg-2) unstable; urgency=medium . * Build with -Wl,--as-needed * Add patch to (hopefully) build reproducibly * Temporarily add libavdevice-dev to b-d to work around pjproject issue asterisk (1:13.14.1~dfsg-2) unstable; urgency=high . [ Tzafrir Cohen ] * CVE-2017-9358 / AST-2017-004: Memory exhaustion on short SCCP packets (Closes: #863906) * Documentation updates in debian/: - d/p/test_framework.patch: no longer an upstream issue - d/asterisk-config-custom: - fix typo: buildbuildpackage (Closes: #860902) - add comment that dpkg-buildpackage comes from dpkg-dev asterisk (1:13.14.1~dfsg-1) unstable; urgency=medium . * New upstream version 13.14.1 - Fixes AST-2017-001 (Buffer overflow in CDR's set user) (Closes: #859910) * Import upstream fix to set the RTP source address to the address bound by the PJSIP transport (Closes: #859911) asterisk (1:13.14.0~dfsg-1) unstable; urgency=medium . [ Bernhard Schmidt ] * New upstream version 13.14.0~dfsg - Fixes RTP error on systems with disabled IPv6 (Closes: #853792) - Fixes asymetric RTP codec selection (Closes: #855014) * drop pjsip_improve_logging.patch, applied upstream * drop configure-osarch, applied upstream asterisk (1:13.14.0~dfsg-1~exp1) experimental; urgency=medium . [ Bernhard Schmidt ] * New upstream version 13.14.0~dfsg - Fixes RTP error on systems with disabled IPv6 (Closes: #853792) - Fixes asymetric RTP codec selection (Closes: #855014) * drop pjsip_improve_logging.patch, applied upstream * drop configure-osarch, applied upstream asterisk (1:13.13.1~dfsg-4) unstable; urgency=medium . * Depend on asterisk-core-sounds-en instead of -gsm asterisk (1:13.13.1~dfsg-3) unstable; urgency=medium . [ Bernhard Schmidt ] * Patch from upstream: pjsip_improve_logging.patch to improve logging levels in pjproject/chan_pjsip (Closes: #849804). Thanks to Joerg Dorchain for testing. * Disable SNMP support for now libsnmp-dev pulls in libssl1.0-dev, which is not coinstallable with libssl-dev needed by Asterisk and all other dependencies asterisk (1:13.13.1~dfsg-3~exp1) experimental; urgency=medium . * Patch from upstream: pjsip_improve_logging.patch possible fix for #849804 asterisk (1:13.13.1~dfsg-2) unstable; urgency=medium . [ Tzafrir Cohen ] * test_framework.patch: fix ABI * Add a DAHDI hook script for Asterisk (Closes: #848584) . [ Bernhard Schmidt ] * disable the open-source Opus and VP8 codec - these are built out-of-tree in asterisk-opus now, add Suggests asterisk (1:13.13.1~dfsg-1) unstable; urgency=medium . [ Bernhard Schmidt ] * New upstream version 13.13.1~dfsg - Fix AST-2016-008 (Closes: #847666, but the Debian package was most likely not vulnerable due to a patched Opus implementation) - Fix AST-2016-009 / CVE-2016-9938 (Closes: #847668) * Drop fix_libedit_unicode.patch, applied upstream * Drop HURD patches, applied upstream * Drop changes to res/res_format_attr_opus.c from opus.patch * Add pjsip_unresolved_symbol.patch to fix unresolved symbol in chan_pjsip asterisk (1:13.12.2~dfsg-2) unstable; urgency=medium . [ Bernhard Schmidt ] * Import upstream fix for libedit unicode garbage (Closes: #845144) asterisk (1:13.12.2~dfsg-1) unstable; urgency=medium . [ Tzafrir Cohen ] * libsystemd is needed for sd_notify support * upstreaming radcli-detection.patch . [ Bernhard Schmidt ] * Additional upstream signing key for Rusty Newton * New upstream version 13.12.2~dfsg asterisk (1:13.12.1~dfsg-1) unstable; urgency=medium . * New upstream release. * Update opus patch, add libopusfile-dev build-dep * Use startup notification in systemd unit * no_native_arch.patch: avoid -march=native (Closes: #842917) * Preliminary OpenSSL 1.1.0 support (Closes: #828240) - d/p/OpenSSL-1.1.0-support.patch from Tzafrir Cohen - d/p/OpenSSL-1.1.0-support-2.patch suggested by Stepan Golosunov * Install files for REST API (Closes: #836924) * Bump to debhelper 10, enabling parallel build (Closes: #778751) * Migrate to Automatic Debug Packages (-dbgsym) * Add Bernhard Schmidt to uploaders asterisk (1:13.11.2~dfsg-1) unstable; urgency=medium . * Update d/u/signing-keys.asc for 13.11.2 - Add Matthew Fredrickson (0x8438CBA18D0CAA72) - Drop Joshua Colp (0xDAB29B236B940F89) * New upstream version 13.11.2~dfsg - Update d/p/systemd.patch for new release - Refresh/unfuzz patches - fixes CVE-2016-7550 (Closes: #838833) - fixes CVE-2016-7551 (Closes: #838832) * Build-depend on libradcli-dev again, libfreeradius-client-dev is dropped from sid (Closes: #836953) * fix obsolete build-dep libmysqlclient-dev -> default-libmysqlclient-dev * add lsb-base dependency to asterisk asterisk (1:13.10.0~dfsg-1) unstable; urgency=medium . [ upstream ] * New release(s). . [ Jonas Smedegaard ] * Update upstream signing-key: + Add Richard Mudgett (0x6CB44E557BD982D8). + Drop Rusty Newton (0x123FD04E861FFB7D). + Drop Matthew Fredrickson (0x8438CBA18D0CAA72). * Update AMR patch. * Unfuzz patches. * Update copyright info. asterisk (1:13.9.1~dfsg-2) unstable; urgency=medium . [ Tzafrir Cohen ] * provide a usable sounds/priv-callerintros . [ Jonas Smedegaard ] * Fix override dh_install only for architecture-dependent targets. Closes: Bug#821018. Thanks to Santiago Vila. * Build-depend on libfreeradius-client-dev, with libradcli-dev only as fallback (see bug#825121). asterisk (1:13.9.1~dfsg-1) unstable; urgency=medium . [ upstream ] * New release(s). . [ Jonas Smedegaard ] * Update copyright info: + Fix cover BSD-4-Clause, BSD-3-Clause, GSM, and ISC licensed files. + Fix extend coverage for main upstream author. + Fix extend Files section for ooh323. + Fix add more copyright holders to initial catch-all Files section, and merge with more specific same-licensed Files sections. + Fix update and merge unrestricted licensed files. + Fix distinguish plain GPL licensed files from those referencing Asterisk exceptions. + Fix drop Files sections for files with no copyright or licensing statements. + Fix interpret "GPL is fine" grant as plain GPL-2 (without Asterisk exceptions). + Fix copyright holder and mention of additional WOL license. + Mention alternative LGPL license. + Use license grant and tidy comments for GPL licensed files. + Fix add files in the public domain. + Fix file path (track patch not patch content). + Fix strip trailing / from excluded files. Thanks to Vasuded Kamath. * Add copyright-check scripts to source package. * Declare compliance with Debian Policy 3.9.8. asterisk (1:13.8.2~dfsg-1) unstable; urgency=medium . [ Tzafrir Cohen ] * New upstream release (Fixes AST-2016-005). * systemd: only restart on failure . [ Jonas Smedegaard ] * Link against radcli favored over freeradius-client/radiusclient-ng: + Add patch to autodetect radcli. + Build-depend on libradcli-dev, with libfreeradius-client-dev or libradiusclient-ng-dev only as fallbacks. Closes: Bug#822339. Thanks to Daniel Pocock. * Enable PJProject and FFMpeg: Both projects has re-entered testing. asterisk (1:13.8.0~dfsg-1) experimental; urgency=medium . [ upstream ] * New release. . [ Tzafrir Cohen ] * hurd_osarch.patch: set osarch to support HURD * hurd_path_max.patch (Closes: #784551) . [ Jonas Smedegaard ] * Build-depend on libpjproject-dev. * Unfuzz patches. asterisk (1:13.7.2~dfsg-1) unstable; urgency=medium . [ upstream ] * New minor releases. + Fixes AST-2015-001. CVE-2015-1558. Closes: Bug#780601. + Fixes AST-2015-002. Related to CVE-2014-8150. . [ Jonas Smedegaard ] * Update patches: + Unfuzz patches enable_addons smsq_enable. + Refresh and tighten all patches. + Add/update DEP3 patch headers, with long descriptions embedded in Description field. * Modernize Vcs-* field URLs: + Use https protocol. + Use cgit viewer. * Declare compliance with Debian Policy 3.9.7. * Wrap and sort control file. * Add myself as uploader. * Tidy copyright info: Strip trailing whitespace. * Drop/simplify obsolete versioning or fallbacks in build-dependencies or breaks/replaces. * Avoid X11-related on not-in-testing linkage (until in testing and X11-related binaries are in separate binary package). + Only enable PJProject, SDL or FFMpeg when targeted experimental. + Disable in non-experimental releases. + Ignore ABI drift on experimental builds. + Temporarily stop build-depend on libpjproject-dev. Closes: Bug#804460, #792303. * Fix build-depend only on libsrtp-dev (not also libsrtp0-dev). * Build-depend on liburiparser-dev, for (presumably) a more uniform URI parsing. Closes: Bug#786926. * Update watch file: + Bump to file format 4. + Always repackage, using xz. + Mangle debian version: strip ~dfsg suffix. * Update upstream PGP keyring: Add Joshua Colp (0xDAB29B236B940F89). * Git-ignore quilt .pc dir. * Have git-buildpackage filter upstream .gitignore files, enable signed tags, and enable use of pristine-tar. * Drop custom get-orig-source target: Use "gbp import-orig --uscan" instead. * Update copyright info: + Fix include reasons for repackaging in Source field (not separate Comment field) as mandated by file format 1.0. + Consider formats/msgsm.h as non-copyright-protected, with comment on reasoning. + Consider formats/msgsm.h as non-copyright-protected, with comment on reasoning. + Fix use License shortnames BSD-3-clause~IETF BSD-4-clause~Clapper (not BSD-3-clause). + Fix include full verbatim BSD-3-clause~IETF license. + Wrap at 72 chars. + Use "None" (not "-") as copyright holder for files in the public domain. + Strip non-license text. + Assume unversioned GPL is same as generally for the project. + Drop comment on audio data encoded as C header file lacking source: Upstream is free to choose that format as preferred form (similar to pnm for graphics). + Assume GTK+ dialogue code without explicit licensing has same license as project generally. + Use License-Grant and License-Reference fields. Thanks to Ben Finney. * Improve media support: + Add patch to add Opus codec module supporting transcoding. + Add patch to add VP8 format module supporting read/write to file. + Add patch to add AMR and AMR-WB modules supporting transcoding. + Add patches to support video in console. + Build-depend on libopus-dev libopencore-amrnb-dev libopencore-amrwb-dev libavcodec-dev libswscale-dev libsdl-image1.2-dev. Closes: bug#786972, #531728. * Bump ABI hash. * Add lintian override regarding license in License-Reference field. See bug#786450. * Tidy README.Debian: Fix typo. * Emit config.log if configure fails. asterisk (1:13.1.0~dfsg-1.1) unstable; urgency=medium . * Non-maintainer upload. . [ Matthias Klose ] * Build with -fgnu89-inline. Closes: #777782. * CVE-2015-1558: File descriptor leak when incompatible codecs are offered. Closes: #780601. . [ James Cowgill ] * Fix OSARCH detection on all linux architectures. Closes: #780287. asterisk (1:13.1.0~dfsg-1) unstable; urgency=high . [ Tzafrir Cohen ] * New upstream release, fixes various security holes (Closes: #771463): - AST-2014-012 (CVE-2014-8412): Mixed IP address families in ACLs may permit unwanted traffic - AST-2014-013 (CVE-2014-8413): PJSIP ACLs not loaded at startup - AST-2014-014 (CVE-2014-8414): High call load may result in hung channels in ConfBridge - AST-2014-015 (CVE-2014-8415): Remote Crash Vulnerability in PJSIP channel driver - AST-2014-016 (CVE-2014-8416): Remote Crash Vulnerability in PJSIP channel driver - AST-2014-017 (CVE-2014-8417): Mark CONFBRIDGE as a sensitive function for external APIs - AST-2014-018 (CVE-2014-8418): Mark DB as a sensitive function for external APIs - AST-2014-019.patch (CVE-2014-9374): Remote Crash Vulnerability in WebSocket Server (Closes: #773230). * The key file better be ascii-armoured, indeed * init script: kill with PID (Closes: #742783) * Describe patch astdatadir . [ Stappers Geert ] * new file: debian/README.source (Closes: #772469). * asterisk-config-custom (Closes: #760032) asterisk (1:13.0.0~dfsg-2) unstable; urgency=medium . * Patch bigendian: fix building chan_phone on big endian platforms. * Makefile_kfreebsd: Have Makefile's 'config' target install the same files as kFreeBSD as it does on Linux. asterisk (1:13.0.0~dfsg-1) unstable; urgency=medium . * New upstream release (Closes: #716931, #504741) - Patches merged upstream: - allow-tilde-destdir - dahdi_create_channels - enable_addons - escape_manpage_hyphen.patch - ignore_failed_channels.patch - neon_version_check.patch - pjproject - pri_destroy_span_prilist.patch - res_fax_bounds.patch - series - sigpri_handle_enodev_1.patch * A systemd service. * Compat level 9. * Extra build dependencies for Asterisk 13. * Re-enable chan_mgcp: work around a bug in menuselect? (Closes: #745718). * Some fixes to the copyright file. asterisk (1:11.13.1~dfsg-2) testing-proposed-updates; urgency=high . * New upstream release: fixes AST-2014-011 (CVE-2014-3566, POODLE). * Add a local gbp.conf for branch jessie * New patches for recent security issues (Closes: #771463): - AST-2014-012 (CVE-2014-8412): Mixed IP address families in ACLs may permit unwanted traffic - AST-2014-014 (CVE-2014-8414): High call load may result in hung channels in ConfBridge - AST-2014-017 (CVE-2014-8417): Mark CONFBRIDGE as a sensitive function for external APIs - AST-2014-018 (CVE-2014-8418): Mark DB as a sensitive function for external APIs * AST-2014-019.patch (CVE-2014-9374): Remote Crash Vulnerability in WebSocket Server (Closes: #773230). * sanity check to avoid changing the ABI hash. asterisk (1:11.13.1~dfsg-1) unstable; urgency=high . * New upstream release: fixes AST-2014-011 (CVE-2014-3566, POODLE). asterisk (1:11.13.0~dfsg-1) unstable; urgency=medium . * New upstream release. - Drop aelparse_manpage.patch and smsq_manpage.patch, fixed upstream. * Fix an out of bounds error in res_fax.c. * Allow res_calendar_ews to work with neon 0.30.x (Closes: #761677). * Build with all hardening options enabled. asterisk (1:11.12.1~dfsg-1) unstable; urgency=high . * New upstream security release, fixes: - AST-2014-010 a.k.a. CVE-2014-6610 (Closes: #762164). asterisk (1:11.12.0~dfsg-1) unstable; urgency=medium . * New upstream release. - Drop pbx_lua_regression patch, fixed upstream. * Make asterisk Provide asterisk-$$AST_BUILDOPT_SUM (Closes: #689109). asterisk (1:11.11.0~dfsg-2) unstable; urgency=medium . * Fix loading lua modules from pbx_lua (Closes: #756425). * Ship the aelparse utility (Closes: #747866). asterisk (1:11.11.0~dfsg-1) unstable; urgency=medium . * New upstream release. - Drop safe_asterisk-config and safe_asterisk-nobg patches, fixed upstream in bug ASTERISK-23492. - Update pjproject patch. * Remove svn-upgrade from watch file. asterisk (1:11.10.2~dfsg-1) unstable; urgency=high . * New upstream security release, fixes: - AST-2014-006: Asterisk Manager User Unauthorized Shell Access - AST-2014-007: Exhaustion of Allowed Concurrent HTTP Connections asterisk (1:11.10.0~dfsg-1) unstable; urgency=medium . * New upstream release. asterisk (1:11.9.0~dfsg-2) unstable; urgency=medium . * Rollback changes to init script (Closes: #749024). asterisk (1:11.9.0~dfsg-1) unstable; urgency=medium . [ Jeremy Lainé ] * New upstream release. - Drop ASTERISK-23310 patch, fixed upstream. - Drop dahdi_pri_event_removed patch, fixed upstream. - Drop freeradius-client patch, fixed upstream. - Update pjproject patch. * Provide a manpage for smsq. * Use "set -e" in asterisk.(postrm|prerm) (fixes lintian warning). * Add upstream GPG signature check to watch file. * Add Daniel Pocock to uploaders. . [ Daniel Pocock ] * Make init script more adaptable for multiple instances. . [ Tzafrir Cohen ] * pri_destroy_span_prilist.patch, sigpri_handle_enodev_1.patch: fix regressions due to dahdi_pri_event_removed. asterisk (1:11.8.1~dfsg-1) unstable; urgency=high . * New upstream security release (Closes: #741313). asterisk (1:11.8.0~dfsg-2) unstable; urgency=medium . * Really fix versioned Breaks/Replaces for asterisk-dahdi (Closes: #732419). asterisk (1:11.8.0~dfsg-1) unstable; urgency=low . [ Jeremy Lainé ] * New upstream release. - rasterisk no longer prints a warning when live_dangerously is set. * Patch ASTERISK-23310: fixes crash when a leg of a remote RTP bridge fails. . [ Frederic Van Espen ] * smsq_enable.patch: enable smsq compilation (Closes: #738588) asterisk (1:11.7.0~dfsg-1+e1) experimental; urgency=low . * Add the DTLS-SRTP patch for Firefox WebRTC support * suppress_warning_rasterisk.patch: rasterisk should not print a warning. asterisk (1:11.7.0~dfsg-1) unstable; urgency=high . * New upstream security release (Closes: #732355). - Drop astdb_mans patch, fixed upstream. * Fix versioned Breaks/Replaces for asterisk-dahdi (Closes: #732419). asterisk (1:11.6.0~dfsg-3) unstable; urgency=medium . * Fix default RADIUS configuration path when using libfreeradius-client. asterisk (1:11.6.0~dfsg-2) unstable; urgency=medium . [ Jeremy Lainé ] * Update Standards-Version to 3.9.5 (no changes). * Add Suggests on asterisk-vpb. * Build against libfreeradius-client (Closes: #721622). * Make sure CPPFLAGS get carried down to the build system. * Fix versioned Breaks/Replaces for asterisk-vpb (Closes: #731971). . [ Tzafrir Cohen ] * Restore SE Linux settings on directories created in init script (Russell Coker, Closes: #731397). * ignore_failed_channels.patch: allow dahdi to start after Asterisk. * Move app_flash to asterisk-dahdi. asterisk (1:11.6.0~dfsg-1) unstable; urgency=low . * New upstream release. - Drop bzero patch, fixed upstream. - Update pjproject patch. * Move VoiceTronix support to asterisk-vpb (Closes: #492329). * Enable BETTER_BACKTRACES for debug builds. asterisk (1:11.5.1~dfsg1-1) unstable; urgency=low . * Remove res/pjproject from the source tarball (Closes: #725210). asterisk (1:11.5.1~dfsg-2) unstable; urgency=low . [ Jeremy Lainé ] * Fix FTBFS for binary-arch builds. * Fix Vcs-Browser and Vcs-Git URLs. * Update Standards-Version to 3.9.4 (no changes). . [ Tzafrir Cohen ] * Patch reenable: reenable chan_vpb. * Depend on srtp even on sparc and hurd: the build fails if srtp is not installed. * Add Jeremy Lainé to uploaders. asterisk (1:11.5.1~dfsg-1) unstable; urgency=low . [ Faidon Liambotis ] * New major upstream release. - Drop patch kfreebsd, fixed upstream. - Drop patch httpd_port. - Drop patch menuselect_cflags, merged upstream. - Drop patch bluetooth_bind, merged upstream. - Replace libopenais-dev with corosync-dev, res_corosync replaces res_ais. - Fixes CVE-2013-5641, CVE-2013-5642 (Closes: #721220). - Patch fix_xmpp_19532 also included (Closes: #545272). - Patch powerpcspe also included (Closes: #701505). - Fixes incorrect sip causes issue (Closes: #710557). - Patch powerpcspe also included (Closes: #701505). - Patces merged upstream: AST-2012-012, ASt-2012-013, AST-2012-014, AST-2012-015, AST-2013-002, AST-2013-003 * Do not ship the removed-but-reincluded docs, they're outdated by now. Upstream wants their Wiki to be the primary Asterisk documentation place. * Ship UPGRADE-{10,1.8,1.4,1.2}.txt in asterisk-doc. * Do not ship app_meetme.so and app_dahdibarge.so, deprecated by upstream. - Also remove them from asterisk-dahdi's full description. * Remove ASTSAFE_CONSOLE and ASTSAFE_TTY from asterisk.default, they aren't being unused for a while now. . [ Tzafrir Cohen ] * Patch undeprecate: undeprecate meetme. * increased compat level for debian/clean. * Disable hardening for now. * Convert rules to dh. - Patch astdatadir: set datadir in /usr/share/asterisk instead of using an environment variable. * Patch pjproject: make pjproject optional. - Patch bzero: Simplify applying the above, and fix an interface stupidity inflicted by pjproject. - get-orig-source: remove res/pjproject from the source tarball. * debian/rules: switch to dh. * Patches dahdi_create_channels, dahdi_pri_event_removed: backport dynamic DAHDI support. * Patch hyphen: hypen-minus fixes in asterisk.8 * Patch astdb_man: Man pages for astdb2bdb and astdb2sqlite3. . [ David Sarmiento ] * Re-enabled pjproject * Modified rules file to be able to build pjproject * Updated build-deps asterisk (1:1.8.13.1~dfsg-3) unstable; urgency=high . * Rewrtote sip.conf parts of AST-2012-014: dropped patches fix-sip-tcp-no-FILE and fix-sip-tls-leak. * Reverting other changes rejected by the release team: README.Debian, powerpcspe and fix_xmpp_19532 dropped (#545272 and #701505 reopened). asterisk (1:1.8.13.1~dfsg-2) unstable; urgency=high . * Patches backported from Asterisk 1.8.19.1 (Closes: #697230): - Patch AST-2012-014 (CVE-2012-5976) - fixes Crashes due to large stack allocations when using TCP. The following two fixes were also pulled in order to easily apply it: - Patch fix-sip-tcp-no-FILE - Switch to reading with a recv loop - Patch fix-sip-tls-leak - Memory leak in the SIP TLS code - Patch AST-2012-015 (CVE-2012-5977) - Denial of Service Through Exploitation of Device State Caching * Patch powerpcspe: Fix OSARCH for powerpcspe (Closes: #701505). * README.Debian: document running the testsuite. * Patch fix_xmpp_19532: fix a crash of the XMPP code (Closes: #545272). * Patches backported from Asterisk 1.8.20.2 (Closes: #704114): - Patch AST-2013-002 (CVE-2012-2686): Prevent DoS in HTTP server with a large POST. - Patch AST-2013-003 (CVE-2012-2264): Prevent username disclosure in SIP channel driver. * Patch bluetooth_bind - fix breakage of chan_mobile (Closes: #614786). asterisk (1:1.8.13.1~dfsg-1) unstable; urgency=low . * New upstream release (Closes: #680470): - Fixes AST-2012-010 (CVE-2012-3863). - Fixes AST-2012-011 (CVE-2012-38612). * Patch AST-2012-012 (CVE-2012-2186): AMI User Shell Access with ExternalIVR * Patch AST-2012-012 (CVE-2012-4737): ACL rules ignored during calls by some IAX2 peers. asterisk (1:1.8.13.0~dfsg-1) unstable; urgency=high * New upstream release. - AST-2012-007 (CVE-2012-2947): Fix IAX receiving HOLD without suggested MOH class crash (Closes: #675204). - AST-2012-008 (CVE-2012-2948): remote crash issue in chan_skinny (Closes: #67521). - Patch gmime2.6 removed: merged upstream. - Patch sparc32_disable removed: hacks removed from Upstream Makefile. * Also pass LDFLAGS to menuselect (Closes: #664086 for real). * Fully strip-out the ilbc code (Closes: #665938, #665937). - Patch ilbc_disable to fix the build. * Patch httpd_port: Fix port number of Asterisk httpd. * While we're at it: Closes: #606959, which is a non-issue. asterisk (1:1.8.11.1~dfsg-1) unstable; urgency=high * New upstream release, Closes: #670180: - AST-2012-004 - further Manager permission fixes (CVE-2012-2414). - AST-2012-005 - Heap overflow in chan_skinny (CVE-2012-2415). - AST-2012-006 - Remote crash on SIP "UPDATE" method (CVE-2012-2416). * Fix daemon status check in init.d script (Closes: #669378). * Patch menuselect_cflags: allow passing our flags to menuselect's build. - Use it t opass our CFLAGS to menuselect (Closes: #664086). asterisk (1:1.8.10.1~dfsg-1) unstable; urgency=low [ Victor Seva ] * Update backports/squeeze script gmime2.6 -> gmime2.4 [ Tzafrir Cohen ] * New upstrean bug-fix release. - Fixes "[CVE-2012-1183 - CVE-2012-1184] Asterisk: AST-2012-002 and AST-2012-003 flaws" (Closes: #664411). * Patch gmime2.6 (Closes: #663998, #664004), also fixed Build-Depends. * Remove the text of RFC 3951 from the tarball. (Closes: #665937) asterisk (1:1.8.10.0~dfsg-1) unstable; urgency=low [ Tzafrir Cohen ] * New upstrean release. * Build-depend on sqlite3 as well (Closes: #531759). [ Paul Belanger ] * debian/patch/chan_iax2-detach-thread-on-non-stop-exit: - Dropped; merged upstream [ Mark Purcell ] * New Release: - Fixes "SHA-1 code is doesn't allow modification" (Closes: #643703) - Fixes "[CVE-2012-1183 - CVE-2012-1184] Asterisk: AST-2012-002 and AST-2012-003 flaws" (Closes: #664411) - Fixes "Placing calls on hold fails with some IP phones" (Closes: #632518) - Fixes "Pass the correct value to ast_timer_set_rate() for IAX2 trunking." (Closes: #661974) - Fixes "Call quality on IAX significantly worse than SIP" (Closes: #481702) - Fixes "New upstream release: 1.8.2.2" (Closes: #610811) - Fixes "asterisk german number pronunciation" (Closes: #402991) - Fixes "Why using version 1.6.2.9 - it's not LTS" (Closes: #612147) - Fixes "SRTP/ZRTP support for Asterisk" (Closes: #577686) - Fixes "fails to register SIP channels on ARM" (Closes: #660240) * Fix "Planned gmime 2.4 removal" Updated Build-Depends: (Closes: #663998) * export CFLAGS LDFLAGS - Fixes "Hardening flags missing for menuselect" (Closes: #664086) - Fixes "enable hardening options" (Closes: #542741) asterisk (1:1.8.8.2~dfsg-1) unstable; urgency=high * New upstream release, fixes AST-2012-001 (Closes: #656596). * Use CFLAGS and LDFLAGS from dpkg-buildflags (Closes: #653944). asterisk (1:1.8.8.0~dfsg-1) unstable; urgency=high [ Faidon Liambotis ] * Fix Breaks/Conflicts to contain the epoch. * Urgency high since this resulted in file conflicts when upgrading from stable. * Patch reenable-pri-optional: Backport a patch from upstream to fix several PRI features being compiled-out and hence disabled. * Bump libpri-dev dependency to 1.4.12; it is not strictly needed but extra functionality is enabled at build-time. [ Tzafrir Cohen ] * New upstream release. Closes: #651552. - Patch reenable-pri-optional dropped: included upstream. * Officially remove asterisk-h323: - Break older versions, as it did not have a versioned Depends before. - Remove the package. * Update watch file to only check for 1.8.x tarballs. asterisk (1:1.8.7.1~dfsg-3) unstable; urgency=high [ Faidon Liambotis ] * Fix Breaks/Conflicts to contain the epoch. * Urgency high since this resulted in file conflicts when upgrading from stable. * Patch reenable-pri-optional: Backport a patch from upstream to fix several PRI features being compiled-out and hence disabled. * Bump libpri-dev dependency to 1.4.12; it is not strictly needed but extra functionality is enabled at build-time. [ Tzafrir Cohen ] * Officially remove asterisk-h323: - Break older versions, as it did not have a versioned Depends before. - Remove the package. asterisk (1:1.8.7.1~dfsg-2) unstable; urgency=low * libncurses is a build dep afterall (Closes: #649431). asterisk (1:1.8.7.1~dfsg-1) unstable; urgency=high [ Tzafrir Cohen ] * New upstream release (Closes: #647252): - Patch refix_bashism removed: applied upstream. - Patch openssl10 removed: applied upstream. - Patch gmime-2.4 removed: applied upstream. - Patch gcc46 removed - was a backport from upstream. * Disable chan_h323: broken with curren h323plus, and not loved by upstream. * Patch chan_iax2-detach-thread-on-non-stop-exit: Hopefully plugs a memory leak. EXPERIMENTAL. DO NOT UPLOAD WITH THIS FOR NOW. * Patch reinclude_docs: a copy of the included documentation that was removed. * Patch sparc32_disable: Remove pointless optimization for sparc64 [ Paul Belanger ] * Bump libpri-dev to 1.4.11. * Ensure sub-packages with asterisk modules are the same version as the binary. asterisk (1:1.8.4.4~dfsg-2) unstable; urgency=low * Don't mark en-gsm sound files as enabled, so they won't be downloaded. asterisk (1:1.8.4.4~dfsg-1) unstable; urgency=high * AST-2011-011 (CVE-2011-2536): Don't leak SIP username information (closes: #632029) * Clearly the NC-ND license for AST.{pdf,txt} is here to stay. Strip it. - And while we're at at, strip out sound files and some generated files. asterisk (1:1.8.4.3-1) unstable; urgency=high * New upstream point release, fixes 3 remotely-explitables (of sort) bugs: - AST-2011-008, CVE-2011-2529 (Closes: #631446) - AST-2011-009 (Closes: #631445) - AST-2011-010, CVE-2011-2535 (Closes: #631448) asterisk (1:1.8.4.2-1) unstable; urgency=low * New upstream point release: - Fixes CVE-2011-2216 - AST-2011-007 (Closes: #629130). * Patch gcc46: Fix the induced regression. * Blacklist SRTP support on Sparc and hurd-i386 until SRTP available there. asterisk (1:1.8.4-1) unstable; urgency=low * New upstream release. - Patch no_ssl2 removed: merged upstream. * Remove unneeded dependency on voicemail modules - only leave Recommends (Closes: #624190). * Patch refix_bashism: bashism crept bact into the configure script (Jilles Tjoelker). * Fixes for kFreeBSD (Closes: #624569): - Declare build-deps linux-any: libtonezone-dev, libvpb-dev, libbluetooth-dev, libopenh323-dev, libcap[2]-dev, libstrp0-dev. - Thus sub-packages asterisk-dahdi, asterisk-h323 and asterisk-mobile are linux-any. - And logic added to rules file not to copy their files on non-linux. - Patch kfreebsd: Fix building with kFreeBSD. - Patch no_uname: Fix building with kFreeBSD: an uglier patch. * Patch gcc46: Some gcc-4.6 fixes from upstream. Get rid of some build warnings. asterisk (1:1.8.3.3-1) unstable; urgency=high [ Tzafrir Cohen ] * Switching to branch 1.8 (Closes: #610487, #614580, #618790, #618791, #623775). * Patch parser-mangles-include dropped: merged upstream. * Patch dahdi-fxsks-hookstate dropped: merged upstream. * Patch dahdi_ptmp_nt dropped: silly hack no longer needed. * Patch dahdi_pri_debug_spannums dropped: merged upstream. * Patch moh_datadir dropped: merged upstream. * Patch settings_show_dirs dropped: merged upstream. * Patch man_hyphen dropped: merged upstream. * Patch typos dropped: merged upstream. * Patch rtcp_cli_fix dropped: merged upstream. * Sound files: version 1.4.20 * Separate sub-package asterisk-modules to avoid multiarch issues. * Extra sub-package asterisk-dahdi for the dahdi modules (Closes: #590588). * As of 1.8.1, AST.pdf and AST.txt are generated from the wiki. - And thus no need for rubber at build time (Closes: #531551). * Separate sub-packages for voicemail backends: - asterisk-voicemail{,-{imap,odbc}storage} - And rename the modules accordingly. * asterisk-mysql, asterisk-mobile, asterisk-mp3, asterisk-ooh323: - asterisk-addons was merged into Asterisk. - Patch enable_addons: do build those modules. - Also app_saycountpl, which will go into the mian package. - Patch mpglib: mpglib from asterisk-addons, originally. * Patch gmime-2.4: fixes building with gmime 2.4 (Closes: #549054). - Requires re-generating configure script. * Patch openssl10: Fix detection of openssl 1.0. * Patch no_ssl2: Don't require client-side SSL2 support. * include menuselect.makeopts in the docs directory - let us know what modules were not built. * Bump Standards version to 3.9.2.0 (no change needed). * Upstream prefers chan_ooh323 to chan_h323. Suggest asterisk-ooh323. * Drop asterisk-sounds-main: we already have that functionality the asterisk-core-sounds packages. * Recommend a moh (music-on-hold) package to have music played on hold. [ Faidon Liambotis ] * Switch to the "3.0 (quilt)" package source format. [ Paul Belanger ] * Depend on libneon27-dev and libical-dev for calendar support. * Depend on libsrtp0-dev for SRTP support. * When compiling with DEB_BUILD_OPTIONS="debug" enable native Asterisk debugging tools. Specifically DONT_OPTIMIZE, DEBUG_THREADS and --enable-dev-mode. * Regardless of which asterisk-voicemail-* is installed (each package conflicts on each other), the name of the module is now app_voicemail.so. * Fix a bug with app_voicemail-*.exports.in not being copied properly. asterisk (1:1.6.2.9-2) unstable; urgency=high [ Tzafrir Cohen ] * Bump Standards version to 3.9.0 (no change needed). * rtcp_cli_fix: Backport a silly CLI parsing issue. (Closes: #589736) * Patch typos: fix a few typos in the source. * Patch man_hyphen: fix hyphen/minus issues in man pages. * Remove useless binaries aelparse, conf2ael and muted. [ Faidon Liambotis ] * Change the way that we read include files, to accommodate for changes in GCC 4.4. Taken from upstream's SVN, thanks to Peter Allgeyer for the patch and Stefan Bauer for preparing an upload. (Closes: #594190) * Set urgency high for a squeeze-targetted RC bug-fixing upload. asterisk (1:1.6.2.9-1) unstable; urgency=low * NOT RELEASED YET * New upstream release (Closes: #585156). - Patch dahdi_fxs_false_ringing removed: merged upstream. - Patch fxs_ports_1626 removed: merged upstream. * Fix dependencies so we start after named and such (Closes: #433779). * Do use libresample (app_jack, codec_resample). asterisk (1:1.6.2.7-1) unstable; urgency=low * New upstream release * Add Build-Depends: libsqlite0-dev | libsqlite-dev * Included upstream: followme_prompts sqlite3_func_rename asterisk (1:1.6.2.6-1) unstable; urgency=low * New upstream release. - Fixes AST-2010-003 - CVE-2010-1224 (Closes: #576560). * Patch h323-fix-makefile dropped: merged upstream. * Patch safe_asterisk-config: Mostly merged upstream. * Patch moh_datadir: Make the datadir the default base for moh files if a relative path is used. * Patch dahdi-fxsks-hookstate: a newer version. * sounds/en/ is now an alternative. English sounds installed to en_US_f_Allison . * Removed empty es/ and fr/ directories under sounds/ * Patch settings_show_dirs: display the user values of more configurable items. * Patch dahdi_fxs_false_ringing: Fix having Astribank FXS-s keep ringing if answered too soon. * Patch followme_prompts: set proper vars when reading followme.conf * Patch sqlite3_func_rename: Avoid issues with the name sqlite3_log . * Patch h323-extra-target: Allow manuallly generate channels/h323/Makefile.ast * And use it to generate the file before building, as otherwise some libs are missing from the link command, resulting in chan_h323.so load fail. asterisk (1:1.6.2.2-1) unstable; urgency=medium [ Faidon Liambotis ] * Relax Debian revision parsing regexp in debian/rules to help with parsing derivatives (e.g. Ubuntu) and backports.org revisions. * Urgency medium because of a security fix upload. * Bump Standards-Version to 3.8.4, no changes needed. * Add ${misc:Depends} on all packages; no functional change, just makes lintian happier. * Use $remote_fs instead of $local_fs in init script's Required-{Start,Stop} since we use /usr. Thanks lintian! [ Tzafrir Cohen ] * New upstream release. Fixes CVE-2010-0441 (AST-2010-001). * Patch sound_files: configure asterisk not to download the new MoH files. * Move sound files tarball to a safe place, as the patch we used to protect them is aparantly not in effect at clean time. asterisk (1:1.6.2.0-1) unstable; urgency=low * New upstream release. * Use DEP3 to tag all of our patches and their merge status. asterisk (1:1.6.2.0~rc7-1) unstable; urgency=high * New upstream release candidate. - Fixes RTP comfort noise issues: CVE-2009-4055 (Closes: #559103). asterisk (1:1.6.2.0~rc6-1) unstable; urgency=low * New upstream release candidate. - Drop paches/AST-2009-007, included upstream. - Drop patches/configure-armel, merged upstream. - Fixes security-related information leak (SIP responses expose valid usernames), fixes AST-2009-008. (Closes: #554487) * Switch to the "3.0 (quilt)" package source format. * Create the /usr/share/asterisk/agi-bin directory. (Closes: #463983) * Stop shipping the refcounter tool since the required debugging compile-time switch is not enabled in our builds. asterisk (1:1.6.2.0~rc3-2) unstable; urgency=high [ Faidon Liambotis ] * Really ship MoH sounds, as mentioned in the rc1 upload. * Move dahdi to Should-Start instead of Required-Start in the init script. (Closes: #552604) * Security fix: "ACL check not present for verifying SIP INVITEs", AST-2009-007. (Closes: #552756) * Urgency high because of security fix upload. [ Tzafrir Cohen ] * Add a sample startup init script. Not installed. * Add mysql and postgresql to Should-Start/Stop: Asterisk may use them in real-time mode. asterisk (1:1.6.2.0~rc3-1) unstable; urgency=low * New upstream RC. - Session timer is not activated if Supported header field in INVITE has both "timer" and other option(s) (Closes: #552336) - Adapt patches/hack-multiple-app-voicemail. * Switch from libreadline5-dev to libreadline-dev build dependency. * Switch from libc-client2007b-dev to libc-client2007e-dev build dependency. * No need for repacking anymore; upstream removed the last piece of non-free material (IAXy's firmware) from the tarball upon our request. Thanks Digium! * Remove patches/debian-banner, no need to warn users to use our BTS anymore as we don't diverge that much nowadays. * Multiple fixes to init script: call 'core stop now' instead of 'stop now', kill the canary on stop, don't print the banner on start. * Temporarily remove OSP support, Asterisk needs a new version (3.5) that isn't yet in Debian. * Add sox to Recommends, used by res_monitor. * Remove ekiga, ohphone, twinkle, kphone from Suggests. * Cleanup the documentation provided in the asterisk-doc package. (Closes: #499215) * Cleanup cruft present in diff.gz after a double build. * Stop shipping old static-http code in examples. Among other things, it includes a vulnerable version of the prototype Javascript library. * Remove obsolete debian/backports/{etch,edgy,feisty}. asterisk (1:1.6.2.0~dfsg~rc1-1) unstable; urgency=low [ Faidon Liambotis ] * New upstream release. - Fixes CVE-2009-2726 aka AST-2009-005 (Closes: #541441). - Ship CC BY-SA 3.0 licensed music-on-hold sounds, replacing the old non-free FreePlay Music that were never distributed by Debian. - Removed patches/makefile_appdocs_dtd (merged upstream) and patches/disable_moh (obsoleted, see above). * Fix FTBFS on armel. (Closes: #532971) * Bump Standards-Version to 3.8.3, no changes needed. * Provides: asterisk-1.6.2, instead of 1.6.1; there are no ABI gurantees between 1.6.x releases. * Remove references of Section: comm in individual binary packages as it is inherited from the source package. [ Tzafrir Cohen ] * Patch hardware_dtmf_mute_fix removed: Applied upstream. * No need for a separate app_directory_odbc (will use app_voicemail_odbc). * Fix name of voicemail 'openssl' dep. (Thomas Renard) (Closes: #539150) * Patch AST-2009-006: breaks IAX2 compatibility, note it in NEWS.Debian. (Closes: #539473) asterisk (1:1.6.2.0~dfsg~beta3-1) unstable; urgency=low [ Faidon Liambotis ] * New upstream release. - Drop patches astvarrundir, pubkey_jnctn; merged upstream (finally!). - Adapt patch safe_asterisk-nobg. * Switch to downloads.asterisk.org instead of downloads.digium.com. * Add depends on libxml2-dev for the new XML documentation. * Remove Conflicts/Replaces with asterisk-classic, asterisk-bristuff, asterisk-chan-capi (<< 1.1.1-1~), since those are pre-lenny. * Revert upstream's r190830 that ported app_osplookup to OSP Toolkit 3.5; the API is not backwards compatible and Debian still has 3.4.2. * Accommodate for the rename of libcap2-dev to libcap-dev (Closes: #532971). * Add dependency to libspandsp to build the fax applications. * Update Standards-Version to 3.8.2, no changes needed. * Remove init script's "zaptel-fix" action; there's no zaptel anymore and was also lintian-buggy in its current form. * Don't include /var/run/asterisk in the package, it is created at boot-time by the init script (thanks lintian). * Remove asterisk-progdocs: it is of very limited use but a) is enormous in size and b) takes too long to build. * Re-enable and port to 1.6 the h323 segfault patch, apparently it's still needed. * Fix asterisk's Makefiles so that the openh323/libpt dependencies are added to chan_h323.so instead of the main asterisk binary. * Fix astgenkey to respect system's umask. Thanks Jonas Smedegaard. (Closes: #531730) * Create /var/log/asterisk/* directories if non-existent, for /var/log on tmpfs scenarios. Thanks martin f krafft! (Closes: #524015) * Use the lsb-base standard way of gathering and reporting status in the init script. Thanks Dustin Kirkland and Ubuntu! (Closes: #506453) * Fix debian/rules so that configure isn't called twice during a build. * Install Zaptel-to-DAHDI.txt, explains the migration procedure from Zaptel to DAHDI and is therefore useful when upgrading from lenny. [ Tzafrir Cohen ] * New upstream release. - Fixes that bashism in safe_asterisk (Closes: #530047) (not dashism). - Dropped patch astcanary_startup: merged upstream. * Patch makefile_appdocs_dtd: fix location of DTD installation. * Register the HTML docs with doc-base as well. asterisk (1:1.4.21.2~dfsg-3) unstable; urgency=medium [ Faidon Liambotis ] * Fix a segfault that occured on AEL parsing on amd64 systems. (Closes: #507883) * Remove bristuff/app-meetme-avoid-overflows patch as it apparently causes more problems than it solves (if any). (Closes: #505310) * Urgency medium because of the RC bugfix. [ Patrick Matthäi ] * Bumped Standards-Version to 3.8.0. [ Mark Purcell ] * Update debian/watch asterisk (1:1.4.16.2~dfsg-2) unstable; urgency=low * asterisk.init: fix start so that it works again. (Closes: #458022) asterisk (1:1.4.16.2~dfsg-1) unstable; urgency=low * New upstream release. (Closes: #457063) (Fixes CVE-2007-6430) - Remove keep-1.4-abi, merged upstream. - Adapt hack-multiple-app-voicemail, use-libpri-bristuffed, tos-libcap. - Adapt bristuff patches app-dial-etc, chan-iax2-hangup-cause, app-dial-priority-202, zapata-bri+euroisdn. * Silence upstream's build sum warning but generate one on all modules so that we can enable it at a later point. * Make the init script's detection of a running daemon to be more precise. * Bump Standards-Version to 3.7.3, no changes needed. * Remove modem.conf on upgrades from 1.2 (i.e. etch). (Closes: #454332) * Ressurect long-forgotten logrotate script. asterisk (1:1.4.15~dfsg-1) unstable; urgency=low * New upstream release (Closes: #452054) - Fix a potential corrupt of voicemail.conf on simultaneous PIN updates (Closes: #353227) [ Tzafrir Cohen ] * Add some sample/reference config files as documentation. * Provide asterisk-bristuff for upgrading from Etch. * Move libc-client to not be last, so debian/backports/xorcom.etch would still work. [ Faidon Liambotis ] * Really enable the libcap/ToS functionality; the previous patch didn't enable the functionality, even though the code and the libcap.so dependency were there. (Closes: #454342) * Fix a minor issue with init script's stop target when running with safe_asterisk. * Add chan_vpb, adding support for VoiceTronix OpenSwitch and OpenLine cards. (Closes: #396499) * Fix debian/watch by using a pkg-voip wrapper to avoid upstream's silly redirections. (Closes: #449706) * Use DEBVERSION as asterisk's version string. * Disable the MD5 build sum that breaks all out-of-tree plugins (duh!). * Create /usr/local/share/asterisk/sounds to put all site-specific non-modifiable sounds. * Add a note about bugs.debian.org to the banner. * Add noload for res_config_* since loading them results in errors and doesn't provide any functionality. * News entries were added but we never shipped the file; ship NEWS.Debian. * Add an entry to NEWS.Debian warning users about app_voicemail_*.so (Closes: #452596) * Provide options in /etc/default/asterisk for configuring safe_asterisk. (Closes: #381786) [ Tzafrir Cohen ] * Provide a custom sounds directory under /var/lib - user-modifieble at runtime and hence not under /usr. (Closes: #337209) asterisk (1:1.4.11~dfsg-4) unstable; urgency=low * Remove imap support to get back original files voicemail functionality. * Fix comment in patches/bristuff/zapata-bri+euroisdn (by nickzxcv). asterisk (1:1.4.11~dfsg-3) unstable; urgency=low * Depend on libsnmp-dev instead of libsnmp10-dev. Fixes FTBFS (Closes: #444322) asterisk (1:1.4.11~dfsg-2) unstable; urgency=low [ Faidon Liambotis ] * Depend on libpri-dev >= 1.4.1-1 for the bristuffed header. (Closes: #439197) * Added a 1.4 backport of the DEVSTATE() dialplan function which allows retrieving any device state in the dialplan, as well as creating custom device states that are controllable from the dialplan. * Replace Build-Depends libc-client-dev (which wasn't used) with libc-client2006j2-dev and enable Voicemail IMAP storage (configure-libc-client). * Build depend on libcurl4-openssl-dev instead of libcurl4-dev which is a virtual package. This also means using the more complete OpenSSL libcurl backend instead of the GnuTLS one. * Add a versioned >= 1.4 dependency of asterisk in asterisk-h323. * Don't use MAKEFLAGS as a variable in debian/rules since it has a special meaning for make. Reported by Simon Richter. * Add Homepage field, as supported by dpkg 1.14.6. * Fix init.d stop when using safe_asterisk. (Closes: #376514) * Drop asterisk-web-vmail package and place the script in /usr/share/doc/asterisk. * Move static-http and sample.call to asterisk's examples. [ Kilian Krause ] * Update backports scripts for libcurl4*-dev * Fix IMAP crash with upstream source snipplet. (Closes: #440187) [ Tzafrir Cohen ] * Support increasing open files limit from init.d script. asterisk (1:1.4.11~dfsg-1) unstable; urgency=low [ Tzafrir Cohen ] * Remove libgtk2.0-dev from Build-Depends since the GTK+ console was not getting built anyway. [ Kilian Krause ] * Add dpkg-dev (>= 1.13.19) to Build-Depends for binary:Version and source:Version. [ Faidon Liambotis ] * New upstream release. (Closes: #439062) - AST-2007-020 Resource Exhaustion vulnerability in SIP channel driver * Switch to quilt as a patch management system instead of dpatch. * Add bristuff 0.4.0-test4 - Split into smaller, individual patches (bristuff/). - Mention HFC-S/HFC-4S support in the Description. - Use libpri-bristuffed.so.1 and its respective header (use-libpri-bristuffed). - Ship xagi-test.c as an example. - Add a news item to NEWS.Debian stating bristuff's inclusion. * Major overhaul of the postinst scripts, completely replacing asterisk_fix. - Create Asterisk's directories on asterisk.dirs to track them using dpkg. - Add asterisk.postinst which calls adduser, chown, chmod. Improve error handling. - Don't do unnecessary stuff on asterisk-config postinst. (Closes: #431506) - chmod /etc/asterisk on build-time to allow the user to modify the permissions; this required a lintian override. - Honor dpkg-statoverride on all the chowned/chmoded directories and configuration files under /etc/asterisk. - Handle asterisk-config -> asterisk installation order properly (Closes: #408708) - Don't add asterisk user to audio and dialout groups if existed before. This allows the administrator to remove the membership. - Don't depend on adduser from asterisk-config. * Remove Suggests to gnomemeeting (it's a dummy package nowdays), asterisk-rate-engine and add one for twinkle. * Remove Conflicts for an old version of asterisk-oh323 which was only present until sarge. * Remove versioned dependencies on ancient (pre-sarge) versions of sed and adduser. * Patch channels/h323/ast_h323.cxx to add some missing PTRACING #ifdef (h323-add-missing-ptrace-guard). * h323-workaround-openh323-segfault patch: workaround a libopenh323 bug (#438815) which causes Asterisk to segfault on startup. (Closes: #435146) * Remove -XCVS from dh_installexamples arguments. Upstream doesn't use CVS anymore. * Add a README.Debian for asterisk-h323 that explains the differences between the different H.323 channel drivers, taken from the asterisk-oh323 package. * Clarify asterisk-h323's description and mention the other channel drivers. * Suggest asterisk-h323 from asterisk. asterisk (1:1.4.10~dfsg-1) unstable; urgency=low * New upstream release - Fwd: [asterisk-announce] ASA-2007-019: Remote crash vulnerability in Skinny channel driver (Closes: #436808) [ Mark Purcell ] * debhelper(1) states Build-Depends: debhelper (>= 5) - aids backports * Update debian/backports for etch, edgy, dapper and feisty - http://status.buildserver.net/packages/status.php?package=asterisk&subdist=pkg-voip [ Faidon Liambotis ] * Refer to /usr/share/common-licenses/GPL-2 instead of GPL. The code is -for now- GPLv2-only and in light of GPLv3, pointing to GPL is misleading. * Add ast_key_dir patch to move keys from /var/lib/asterisk/keys to /usr/share/asterisk/keys where they should be. * Actually ship keys, including Junction Networks' by fixing pubkey_jnctn patch. * Handle space/newline-delimited directories on /etc/asterisk when doing chmod on postinst. * Correct descriptions of packages in debian/control, adapting them to the present and correcting some spelling mistakes. (Closes: #428671) * Add a noload directive for cdr_sqlite.so in the default modules.conf since it writes unconditionally to the database file without being rotated, resulting in unexpected waste of disk space. (Closes: #301883) * Delete duplicated creation of /var/run/asterisk in the init script. asterisk (1:1.4.9~dfsg-1) unstable; urgency=high [ Tzafrir Cohen ] * New upstream release. - ASA-2007-018 - DoS Resource Exhaustion vulnerability in IAX2 [ Faidon Liambotis ] * Add myself to Uploaders. * Fix "debian/rules clean" to cleanup correctly the tree by calling "make distclean" instead of "make clean". Also, fix some stuff in the upstream Makefiles (debian/patches/make-clean-fixes). Fixes a lintian warning. * Add XS-Vcs-Svn and XS-Vcs-Browser to debian/control. * Move examples from all packages (debian/examples) to asterisk-config only. * Add eagi-test.c, eagi-sphinx-test.c, fastagi-test and static-http to examples. * Remove Conflicts/Replaces/Depends to pre-sarge versions, they're useless even for backports. [ Mark Purcell ] * Include asterisk.init changes from Martin - Asterisk does not create /var/run/asterisk directory if not existent (Closes: #413541) * Backout asterisk-h323 Suggests:/ Recommends: asterisk-oh323. The former works, the latter does not with asterisk-1.4.x * Upstream fixes from 1.4.x branch: - Multiple security flaws in Asterisk (Closes: #421467) - Debug switch wrong in /etc/default/asterisk (Closes: #413544) - Upgrading destroys astdb (Closes: #354132) - Upgrading destroys astdb (Closes: #354132) - asterisk bindaddr in sip and iax config is to fixed ip not Interfaces (Closes: #316443) - Incorrect callerid syntax in sip.conf causes incorrect error (Closes: #323275) - dropouts (Closes: #335079) - Does not include cdr_sqlite userfield support by default (Closes: #344097) - Asterisk crashes on sparc when playing 'demo-moreinfo' (Closes: #344484) - fresh install - crash after dialing IAX test (Closes: #350001) - asterisk_fix script fails to set variables for adduser, user creation fails (Closes: #383075) - Debug switch wrong in /etc/default/asterisk (Closes: #413544) - When using L option on Dial, instead of warning asterisk disconnects the call (Closes: #419894) - Patch for fastagi handling (Closes: #368948) - bristuff patch breaks cause codes in Hangup() (Closes: #320350) * add debian/patches/basim-safeasterisk.dpatch - contrib/scripts/safe_asterisk should explicitly link to a cli (Closes: #413543) * Adding a restart when convenient in Asterisk (Closes: #413816) * asterisk-h323: libpt.so.1.10.2 => not found (Closes: #434076) asterisk (1:1.4.8~dfsg-2) unstable; urgency=low * Add patch from Faidon debian/patches/dbug433884.dpatch: - Should not depend on libopenH323, libpt, libSDL, libssl, libldap, ... (Closes: #433884) - Fails to restart after upgrade due to dep on libpt.so.1.10.2 (Closes: #434066) asterisk (1:1.4.8~dfsg-1) unstable; urgency=high * New upstream release - ASA-2007-017: Remote crash vulnerability in STUN implementation (Closes: #433681) * Urgency high for remote crash vulnerability * Updated standard version to 3.7.2 . asterisk (1:1.4.6~dfsg-1) unstable; urgency=low [ Mark Purcell ] * CVE-2007-2488 was addressed 1:1.4.5~dfsg-1 * CVE-2007-1595 was addressed 1:1.4.0~dfsg-1 [ Tzafrir Cohen ] * New upstream release. * Added asterisk-dbg for debugging symbols. * Updated priorities of some packages. * Updated list of supported hardware in description. asterisk (1:1.4.5~dfsg-1) unstable; urgency=low [ Tzafrir Cohen ] * New upstream release. [ Mark Purcell ] * Debconf7 Release :-) * Build-Depends: libpq-dev - obsolete build dependency postgresql-dev (Closes: #389376) asterisk (1:1.4.4~dfsg-3) unstable; urgency=low * Build-Depends: libcurl4-dev | libcurl-dev - uninstallable due to dependancy on libcurl3 (Closes: #426393) asterisk (1:1.4.4~dfsg-2) unstable; urgency=low * Missing debian/changelog entries * Upstream calls make twice to build h323, copy in debian/rules - Asterisks chan_h323 doesn't work because of an undefined symbol (Closes: #421552) * Cleanup debian/patches * chmod +x asterisk-fix - Setting up asterisk (1.4.3~dfsg-1) -> id: asterisk: No such user (Closes: #422237) asterisk (1:1.4.4~dfsg-1) unstable; urgency=low * New Upstream Release - Fix a crash in chan_zap - Fix some cases where IAX2 calls would get dropped - Merge a re-write of channel group counting support that fixes a lot of issues - Fix some DTMF issues related to the use of chan_agent - Fix a crash that occurs when using dialplan functions to set global variables asterisk (1:1.4.3~dfsg-1) unstable; urgency=high * Urgency high as this fixes a number of Asterisk Security Advisories (ASA) * New upstream release - [asteriskteam@digium.com: [asterisk-announce] ASA-2007-011: Multiple problems in SIP channel parser handling response codes] (Closes: #420864) - [asteriskteam@digium.com: [asterisk-announce] ASA-2007-012: Remote Crash Vulnerability in Manager Interface] (Closes: #420866) - [asteriskteam@digium.com: [asterisk-announce] ASA-2007-010: Two stack buffer overflows in SIP channel's T.38 SDP parsing code] (Closes: #420868) - CVE-2007-1594: Asterisk segfaults upon receipt of a certain SIP packet (SIP Response code 0) (Closes: #419820) * Update debian/NEWS to broadcast the demise of bristuff * Asterisk-classic, asterisk-bristuff are depreciated - asterisk has circular Depends on asterisk-bristuff|asterisk-classic (Closes: #384674) * Ship UPGRADE.txt and refer to it in debian/NEWS - UPGRADE.txt cannot be found in any package (Closes: #419164) asterisk (1:1.4.2~dfsg-5) unstable; urgency=low * Bump Build-Depends: libsnmp10-dev | libsnmp-dev * Only ship default/asterisk in asterisk package - Asterisk-config and asterisk 1:1.4.2~dfsg-4 both contain /etc/default/asterisk (Closes: #418656) * Lintian fixes debian-rules-sets-DH_COMPAT asterisk (1:1.4.2~dfsg-4) experimental; urgency=low [ Tzafrir Cohen ] * The dummy fetch was not executable when generated from tar+diff. [ Mark Purcell ] * Create debian/rules binary-arch & binary-indep targets * Move debian/rules magic to package.install files asterisk (1:1.4.2~dfsg-3) experimental; urgency=low * Fix syntax of for dummy fetch (Closes: #416143). * LSB init section in init.d script. * Merge other init.d changes from trunk. asterisk (1:1.4.2~dfsg-2) experimental; urgency=low [ Tzafrir Cohen ] * Fix default varrundir using make vars (Closes: #415799). * Don't run autoconf if you don't need (Closes: #415865). * Require zaptel >= 1.4.1, for ZT_EVENT_REMOVED . [ Mark Purcell ] * Include chan_h323.so in debian/asterisk-h323.install * Please package Asterisk-1.4.0 (Closes: #405723) * Add Build-Depends: libgtk2.0-dev, libc-client-dev * configure --with-pwlib=/usr/share/pwlib/include/ \ --with-h323=/usr/share/openh323/ * debian/asterisk.default - fix -D/-d typo in PARAMS (Closes LP#68169) * debian/asterisk.init: - create /var/run/ directory if necessary and set proper permissions * Move dh_installinit to architecture dependant * Move ASTVARRUNDIR to /var/run/asterisk/ - PID & control files go in wrong place (Closes: #415799) asterisk (1:1.4.2~dfsg-1) experimental; urgency=low * New upstream release. - SIP INVITE DoS, supposedly fixed in 1.4.2 and 1.2.17, which is released today 19/03/2007 (Closes: #415466) * asterisk Depends: ${shlibs:Depends} asterisk (1:1.2.17~dfsg-1) unstable; urgency=low [ Mark Purcell ] * New upstream release - SIP INVITE DoS, supposedly fixed in 1.4.2 and 1.2.17, which is released today 19/03/2007 (Closes: #415466) [ Tzafrir Cohen ] * Allow optionally generating core files from standard init.d script. * Include LSB section in init.d script. * Do run Asterisk by default. * Update documentation in the defaults file and in README.Debian. * Bristuff 0.3.0-PRE-1y-e * Fix building of h323 (1.2.17 aparantly broken by upstream). asterisk (1:1.2.16~dfsg-1) unstable; urgency=high [ Tzafrir Cohen ] * New upstream release. Also fixes remote SIP security hole. * Updated bristuff patch. * Fix umask of Asterisk for the voicemail. asterisk (1:1.2.15~dfsg-1) unstable; urgency=low [ Tzafrir Cohen ] * New upstream release. * ukcid.dpatch: adapted to chan_conf. * bristuff.dpatch: adapted to chan_conf. * daemon_color.dpatch: make rastrisk colourful even without safe_asterisk. * No need to edit a config file to start Asterisk. * Use asterisk.conf based on README.asterisk.conf: - Set default user to asterisk. - Make the control socket writabe by the group asterisk. * don't remove stereorize and streamplayer. * A man page for stereorize. * Create /etc/asterisk/manager.d (Closes: #410715). * Check that Asterisk is alive before sending a command (Closes: #389448). * Use MAKEBUILDOPTS instead of MAKEFLAGS, which is a reserved gmake name. * Removing build depepndency on obsolete and unused libzap-dev. * New transcoding interfaces from zaptel.h of zaptel 1.2.13 or 1.4 seem to be required for Asterisk 1.2.15 . asterisk (1:1.2.14~dfsg-4) unstable; urgency=high * Add missing "fi" to asterisk_fix. (Closes: #406961) asterisk (1:1.2.14~dfsg-3) unstable; urgency=low * Write a more robust version of the FHS-update for /usr/share/asterisk/sounds/priv-callerintros. * Update 30_ast-data-dir to complete fix for #406714. Thanks to Lionel! asterisk (1:1.2.14~dfsg-2) unstable; urgency=low * Install private callerinfos in /var/lib/ where they belong acording to FHS. (Closes: #406714) asterisk (1:1.2.14~dfsg-1) unstable; urgency=low * New upstream release. * Build against libspeex-dev (>= 1.1.12-3) with updated shlibs (Closes: #403544) * Update bristuff patch to apply cleanly with 1.2.14 until new upstream version is out. * Remove hardcoded gcc (Closes: #316802) * Fix upstream clean target. (Closes: #393659) asterisk (1:1.2.13~dfsg-2) unstable; urgency=low [ Tzafrir Cohen ] * less_docs.dpatch: remove unnecessary doxygen docs. asterisk-doc's size is now 1.6M (7.7M installed). [ Mark Purcell ] * asterisk-classic, asterisk-bristuff: /usr/lib/asterisk/modules/format_ogg_vorbis.so gone missing when rebuilt (Closes: #397147) asterisk (1:1.2.13~dfsg-1) unstable; urgency=high [ Kilian Krause ] * Fixup dfsg versions with increased upstream build count. [ Santiago Ruano Rincón ] * Added cdr_sqlite3_custom dpatch [ Mark Purcell ] * New upstream release - Remote compromise (Closes: #394025) - CVE-2006-5444/5:security issues in asterisk (Closes: #395080) - Urgency high as this fixes remote compromise security issue - Information disclosure of voice mail messages through vmail.cgi (Closes: #338116) - package asterisk-dev should contain asterisk.h main header (Closes: #342138) - format_ogg_vorbis.so was present in i386, no longer in packages (Closes: #375141) * Update debian/patches/bristuff.dpatch * bristuff-0.3.0-PRE-1v - Please package bristuff 0.3.0PREu (Closes: #394122) - please include app_pickup.c from bristuff (Closes: #348194) * Build Depends: dpkg ( >= 1.13.19) - Asterisk must build-depend upon dpkg ( >= 1.13.19) (Closes: #386113) * Build-Depends: libpq-dev - obsolete build dependency postgresql-dev (Closes: #389376) asterisk (1:1.2.12.1.dfsg-1) unstable; urgency=low [ Tzafrir Cohen ] * New upstream release * bristuff.dpatch: version adapted. * apprecord_sprintf.dpatch removed: already applied. [ Mark Purcell ] * binary blob in asterisk-classic package (Closes: #386361) * Cleanup bristuff.dpatch asterisk (1:1.2.11.dfsg-1) unstable; urgency=high [ Tzafrir Cohen] * apprecord_sprintf.dpatch: fix format string issue in app_record.so . [ Mark Purcell ] * New Upstream Release * Urgency high as fixes CVE-2006-4346 * CVE-2006-4346: Asterisk MGCP AUEP Response Handling Buffer Overflow (Closes: Bug#385060) * Please package Asterisk 1.2.11 and Zaptel 1.2.8 (Closes: #384283) * Better error handling on init.d reload, if asterisk isn't running * Lintian cleanup: not-binnmuable-any-depends-all * Lintian cleanup: not-binnmuable-all-depends-any * Use restart in asterisk_fix asterisk (1:1.2.10.dfsg-3) unstable; urgency=low [ Kilian Krause ] * Add iaxy.bin to asterisk debs to have working IAX support. * asterisk_fix is included on the main asterisk package (Closes: Bug#287025, Bug#360233, Bug#381861) * Various fixes to asterisk_fix [ Mark Purcell ] * Remove Build-Depends: libgtk1.2-dev (only for asterisk-gtk) * export PROC := $(shell dpkg-architecture -qDEB_BUILD_GNU_CPU) * asterisk-{classic-bristuff} Depends: asterisk * asterisk_fix needs to fix /var/run/asterisk * Move doc/asterisk -> asterisk-doc package asterisk (1:1.2.10.dfsg-2) unstable; urgency=high * IAX2 channel driver security patch [CVE-2006-2898] - CVE-2006-2898: Denial of service in Asterisk (Closes: #380054) asterisk (1:1.2.10.dfsg-1) unstable; urgency=low [ Tzafrir Cohen ] * New upstream release. * bristuff.dpatch updated for the new version. * dfsg tarball also removes ilbc. * Cleanups to asterisk_fix [ Mark Purcell ] * Build-Depends: libpri-dev (>= 1.2.3-1) * Fixes: - Please package version 1.2.9.1 (Closes: #372527) asterisk (1:1.2.9.1.dfsg-1) unstable; urgency=high * New upstream release. [CVE-2006-2898] [ Mark Purcell ] * Update debian/watch for numeric upstream versions [ Kilian Krause ] * Remove unused correct_pid.dpatch (has apparently been fixed with 1.2 upstream) * debian/patches/100_nonroot.dpatch, debian/patches/20_Makefile.dpatch, debian/patches/25_subdirs_Makefiles.dpatch: Remove unused patches [ Tzafrir Cohen ] * reunite init.d and logrotate scripts in the package asterisk * Re-add correct_pid_display.dpatch * bristuff 0.3.0-PRE1q (gsm functionality missing: needs libgstam) * sys_readline.dpatch: Realine support in the CLI. TODO: tab completion * sys_editline.dpatch: alternativly, simply use the system version of editline (not used). * func_odbc_12.dpatch: backport of func_odbc (Closes: #364633) * brazilian_syntax.dpatch (using "pt_BR") * vm_he.dpatch: Hebrew in app_voicemail * The data_dir patch also moves agi-bin/ and firmware/ * option_detach: using -F instead of -D (the same as upstream) * asterisk.init: added "zaptel-fix" to unload and reload zaptel modules asterisk (1:1.2.7.1.dfsg-3) unstable; urgency=high * Urgency high as this is a security fix [CVE-2006-2898] * Added 99_CVE-2006-2898.dpatch from Joey Schulze - Fixes: Bug in the IAX2 channel allows remote attackers to craft a denial of service. asterisk (1:1.2.7.1.dfsg-2) unstable; urgency=high [ Kilian Krause ] * Urgency bumped since 1.2.7 is a security update [CVE-2006-1827] (Closes: #364195) [ Mark Purcell ] * Previous Upload also fixes: - cannot install - directories not created (Closes: #360233) - package uninstallable (Closes: #359970) * Update postinst to fix: fails to upgrade when /etc/asterisk/voicemail.conf is deleted (Closes: #360220) * Link debian/asterisk-bristuff.asterisk.{logrotate,init} & provide debian/asterisk-classic.asterisk.logfile - Fixes: init.d and logrotate.d conflicts (Closes: #360181) asterisk (1:1.2.7.1.dfsg-1) unstable; urgency=low [ Tzafrir Cohen ] * New upstream release. * nomarch.dpatch: removed the patching to internal libgsm, as we don't use it (and it broke in this version) * bristuff.dpatch: based on the patch from bristuff-0.3.0-PRE1n * bristuff.dpatch: A small fix in chan_sip.c * bristuff.dpatch: Disabling "libgsm" until it is renamed * 30_ast-data-dir.dpatch: the symlink sounds/voicemail is now gone * rules: do fail if bristuff patching hasfailed * zap_restart.dpatch: allow restarting zaptel channel with "zap restart" * backport_playdtmf.dpatch: a harmless backport (no impact if not used) * completed the merge of logrotate and init.d scripts [ Lionel Elie Mamane ] * When not running asterisk, do it successfully, not by failure. (closes: #360234) * Create /var/log/asterisk/cdr-csv, not cdr-cvs. [ Mark Purcell ] * Update debian/control for asterisk-h323 package description * Create /var/spool/asterisk & /var/lib/asterisk in debian/*.postinst * New upstream release. Fixes: - Version 1.2.5 is out (Closes: #355299) - since 1.2.0 no chan_modem (Closes: #343232) - Undefined symbol in chan_zap.so (Closes: #339559) - Unapplying patches fail (Closes: #345676) - utils.c:619 tvfix: warning negative timestamp... (Closes: #347929) - creates /.asterisk_history on reboot (Closes: #307218) * h323 modules can be unstable so dont load my default * Cleanup debian/patches to remove obsolete/ old patches asterisk (1:1.2.4.dfsg-7) unstable; urgency=low * Recompile to fix missing asterisk-config from last binNMU round (Closes: #356712, #358413, #355524, #358145) * postinstall: Add /var/spool/asterisk/meetme if nonexistant. (Closes: #355046) * asterisk.init: Install both asterisk-classic and asterisk-bristuff with /etc/init.d/asterisk (Closes: #354729) * logroate: create /var/log/asterisk/cdr-custom/ as well as cdr-csv (Closes: #355048) * logrotate: share location of logrotate file as /etc/logrotate.d/asterisk for both classic and bristuff version (Closes: #356712) * delete chan_capi modules from bristuff * Move postinstall and postrm to asterisk-classsic, asterisk-bristuff and asterisk-config. (Closes: #355524) asterisk (1:1.2.4.dfsg-6) unstable; urgency=low * Add chan_h323 back with new Atlas_devel3 OpenH323. asterisk (1:1.2.4.dfsg-5) unstable; urgency=low * Fix install of asterisk-bristuff with dh_install. asterisk (1:1.2.4.dfsg-4) unstable; urgency=low * Create missing /var/spool/asterisk/voicemail in postinst (Closes: #352586) asterisk (1:1.2.4.dfsg-3) unstable; urgency=low * Fix asterisk-bristuff install target to catch correct versions. asterisk (1:1.2.4.dfsg-2) unstable; urgency=low * update to bristuff 0.3.0-PRE-1k asterisk (1:1.2.4.dfsg-1) unstable; urgency=low [ Tzafrir Cohen ] * Fix PID display (Closes: #338646) * changes to the init.d script (Tzafrir) * debian/ast_config/ place here configurutaion files that will override the defaults from the source, though not get into the sample documentation dir * debian/ast_config/manager.conf: asterisk does listen onthe manager by default, but only on localhost. Other packages need not edit manager.conf to get a manager acount * bristuff 0.3.0-PRE-1f * option_detach.dpatch: Adds option -D: always daemonize (even with -v,-d) (conflicts with bristuff, though) * ukcid.dpatch: UK Caller ID patch for the X100P. (Closes: #302380) [ Kilian Krause ] * New upstream release. (Closes: #350905) * Bumping depends on libpri and zaptel to according 1.2 versions. * Build-Depends on libpri1.2 since new ABI caused new package name. * Removed alternatives from Build-Depends since sbuild will only take first anyway to ensure constant rebuilds. * Add a noload for chan_capi by default, so that we d not stop loading when no CAPI is installed. (Closes: #328835) * Include smsq by adding Build-Depends on libpopt-dev (Closes: #348090) asterisk (1:1.2.1.dfsg-3) unstable; urgency=low * Remove -msoft-float from compile flags to fix compilation on arm. (Closes: #343154) * Provide nonexistant dirs before running chown on them. (Closes: #341810) * Depend on Perl module in libapache-dbi-perl or libdbi-perl or web-vmail (Closes: #337448) * Fix permissions on voicemail.conf. (Closes: #304615) * Build-Depend on gsfonts to have Helvetica font for doxygen (Closes: #343079) asterisk (1:1.2.1.dfsg-2) unstable; urgency=low [ Tzafrir Cohen ] * bristuff 0.3.0-PRE-1d . Still disabled by default * libpri_bristuffed.dpatch: link chan_zap with libpri-bristuffed.so.1 * Use asterisk(8) as a man page for rasterisk * Removing binary steroize: can be done with soxmix of package sox. * Removing binary streamplay: can be done with netcat [ Kilian Krause ] * Fix asterisk-dev to include asterisk.h asterisk (1:1.2.1.dfsg-1) unstable; urgency=low * New upstream release - Please package asterisk 1.2.1 (Closes: #342463) * Temporary disable bristuff for upstream release * sip-1.914.dpatch merged upstream asterisk (1:1.2.0.dfsg-6) unstable; urgency=low * Add Build-Depends: libcurl3-dev | libcurl-dev - Should build-depend on libcurl3-dev (Closes: #341363) * Add Build-Depends: doxygen - Missing build-dependency on doxygen (Closes: #341362) * Build-Depends: adduser (>= 3.63) * disable chan_zap building (in channels makefile) against old libmfcr2 (Closes: #342139) * seperate api docs and configuration samples (Closes: #341395) * Add sip-1.913.dpatch; SIP error 400 on outgoing calls (Closes: #340574) asterisk (1:1.2.0.dfsg-5) unstable; urgency=low [ Tzafrir Cohen ] * Added bristuff 0.3.0-PRE1 [ Mark Purcell ] * asterisk-sounds-main Replaces: asterisk-sounds-extra - asterisk-sounds-{main,extra}: file conflict (Closes: #339791) asterisk (1:1.0.9.dfsg-4) unstable; urgency=low * Cleanup bristuff to build under gcc4, thanks for the suggestions - Closes: #318337: FTBFS. channel.c:64: error: static declaration of 'uniquelock' follows non-static declaration asterisk (1:1.0.9.dfsg-3) unstable; urgency=low * Cleanup 70_debian-libpe-fe.dpatch to check in Makefile * Enable bristuff-0.2.0-RC8j.dpatch * Remove debian/patches/08_debian-zaptel.dpatch as it is no longer needed with new zaptel-source package * Cleanup debian/patches/ * Conflicts: asterisk-oh323 (<= 0.6.6pre3-3) - Closes: #318189: asterisk-oh323: chan_oh323.so cannot find symbol and Asterisk crashes - Closes: #318216: chan_oh323.so symbols * Cleanup postinit error: adduser asterisk audio; adduser asterisk dialout * Incorporate suggestions from Tzafrir Cohen - postinst script has an error - modified astdir patch, so it won't conflict with bristuff patch - typo in the debian/asterisk.default: s/exra/extra/ - build-depends both on zaptel-source (>= 1.0.6) and simply on zaptel-source, The latter is probably unnecessary - man pages for the other executables in the package asterisk (1:1.0.9.dfsg-1) unstable; urgency=low * New upstream release - Closes: #315578: New version of asterisk and bristuff released * Remove BRI patch while we work on it, to allow 1.0.9 to unstable asterisk (1:1.0.7.dfsg.1-2) unstable; urgency=low * Mark Purcell + Update debian/watch to use svn-upgrade * Kilian Krause + debian/asterisk.init: fixed restart problem with breaking up after stop. + debian/asterisk.init: fixed reference to WRAPPER_DEAMON which is only DEAMON for us. (Closes:#300707) asterisk (1:1.0.7.dfsg.1-1) unstable; urgency=low * New upstream release (Ensure non-dfsg MOH is not included in orig.tar) asterisk (1:1.0.7-1) unstable; urgency=low * New upstream release. (Closes: #300403) + Fixed music on hold. (Closes: #300370) * Re-enabled speex codec. (Closes: #300373) * As asterisk-h323 is empty, we are no longer depending on openh323, so we don't have build conflicts between asterisk and zaptel. (Closes: #287260) * debian/rules: Fixed duplicate execution of configure and unrepresentable changes to source. (Closes: #299184) * debian/patches/80_skinny.dpatch: removed. Incorporated in the 1.0.7 release. * debian/patches/97_bristuff.dpatch: fixed problems to build on AMD64 with gcc-4.0 (Closes: #297561) asterisk (1:1.0.6-2) unstable; urgency=low * fixed location of sounds dir in addmailbox (Closes: #298769) asterisk (1:1.0.6-1) unstable; urgency=low * New upstream release. (asterisk 1.0.6, bristuff RC7k, Closes: #298128) * debian/control: explicitly depend on zlib1g-dev. (Closes: #296967) * Make sure we have the newer asterisk-config to not conflict /etc/default/asterisk. (Closes: #297719) * as there is no longer a conflict with libnewt-dev, it was added to the build deps for astman * debian/control: add astman and cdr_sqlite (Closes: #259342) * asterisk.default, asterisk.init: removed hack to load zaphfc correctly. We'll leave this to zaptel and it's modprobe.d features. asterisk (1:1.0.5-4) unstable; urgency=low * debian/patches/00list,debian/control: Enable bristuff RC7f by default. * debian/asterisk.init, debian/asterisk.default: Cleanup zaphfc preloading as inspired by Tzafrir Cohen. * debian/control: Remove speex as B-D, it's broken when imported from debian. Added autotools-dev for editline. * deiban/rules: fix asterisk.8.gz error in lintian. Bring new autotools for editline's configure. * reintroduce chan_zap (Closes: #296656) asterisk (1:1.0.5-3) unstable; urgency=low * debian/patches/08_debian-zaptel.dpatch, debian/control: fixed zaptel.h include to take zaptel-source's version. * debian/patches/97_bristuff.dpatch: include bristuff from junghanns.net (not enabled by default now, would close: #286797). We need libpri and zaptel with bristuff patch first. * 18_debian-libedit.dpatch: removed due to command history problem. (Closes:#281690) * debian/asterisk.init: Added grace timeout of 2 secs before hard shutting down running daemons to don't scatter incorrect warnings. Don't run the asterisk daemon unless RUNASTERISK=yes. (Will not bind ports from chroots) * debian/asterisk-config.default: Disabled autostart - especially when installing in chroots this was quite annoying. * debian/rules: Remove the asterisk.8.gz recompression. (Closes: #295220) * debian/README.Debian: Added first version. Thanks to Tzafrir Cohen for the template! (Closes: #270072) * debian/asterisk.deafult: moved the /etc/default to the asterisk package, as /etc/init.d/asterisk in there needs it. * debian/80_skinny.dpatch: Added http://bugs.digium.com/bug_view_page.php?bug_id=0003496. Thanks to Johan Thelmén . (Closes:#295658) * debian/control: remove chan_h323 from being built for now. For now it's being replaced by asterisk-oh323 until chan_h323 does build and work ok with latest OpenH323 again. asterisk (1:1.0.5-2) unstable; urgency=low * Debian VoIP Team upload. * asterisk.init, asterisk-config.default: probably fixed start-as-user-with- multiple-groups-problem. * patches/40_initgroups.dpatch: added patch from Florian Weimer . Thanks! (Closes: #293124) * debian/postinst: Make asterisk user's home /var/lib/asterisk upon user request. * debian/control: Bump libpri build-depends to 1.0.4-1. (Closes: #293990) asterisk (1:1.0.5-1) unstable; urgency=low * Debian VoIP Team upload. * New upstream release. * Kilian Krause: - debian/asterisk.init: fixed multiple GID problem when starting asterisk (as reported by Raoul Bönisch and Simon Peter). Unfortunatelly this does remove the chance to run as real-time prio. - debian/asterisk.init: fixed stale stop by using start-stop-server after soft shutdown (Closes: #263879) - debian/asterisk.init: Fixed running as root problem for #279052. At least through the /etc/init.d/asterisk you won't be able to run asterisk as root (not even with another username). (Closes: #279052) - debian/asterisk.init: Added switch to run asterisk via safe_asterisk optionally for automatic restart (Closes: #266805) - debian/patches/01_security_hotfix_287851.dpatch: Removed, as is incorporated in 1.0.4 upstream release. * Jose Carlos - debian/rules: add a check at build time for fpm sounds. If they exist, abort, as we must remember to remove those from sources in each new upstream release. - debian/patches: 20_Makefile.dpatch: updated asterisk (1:1.0.3-2) unstable; urgency=low * Apply missing 25_subdirs_Makefile patch. asterisk (1:1.0.3-1) unstable; urgency=high * Debian VoIP Team upload. * New upstream version. (Closes: #284889) * Kilian Krause: - ACK NMU. (Thanks Steve!): + debian/patches/01_security_hotfix_287851.dpatch: Patched to fix logging strings vulnerability. (Closes: #287851) * Jose Carlos Garcia Sogo - Using again dpatch. - debian/patches: populated with different patches. - 08_debian-zaptel: Using zaptel.h file from version 1:1.0.0-2 of zaptel-source package. - removed sounds licensed from FreePlayMusic from source, as the license for them is not DFSG compliant (Closes: #288429) - applied patch to make asterisk compile on amd64 with gcc-4.0 (Closes: #288831) - debian/asterisk.init: + Changed how daemon is restarted in init file. (Closes: #287025) + Using -r in checks in init file. (Closes: #287456) - debian/asterisk-config.default + Run by default as group asterisk. - Fix some lintian warnings and errors: + Description: should start with lowercase letter. + Bumped Standars-Version to 3.6.1. No changes needed. + Removed duplicate dependencies. + Recompress asterisk.8 manpage with max level (--best option) asterisk (1:1.0.2-3.1) unstable; urgency=high * Non-maintainer upload. * High-urgency upload for sarge-targetted RC bugfix * Fix multiple format string vulnerabilities, reported by Jan Niehusmann. Closes: #287851. asterisk (1:1.0.2-3) unstable; urgency=low * Closes: #281524: running asterisk with realtime priority * Include changes from Tzafrir Cohen asterisk (1:1.0.2-2) unstable; urgency=low * fixup init.d/asterisk to logger reload. Thanks Daniel Pocock * Closes: #260575: chan_zap.so: undefined symbol * Build-Depends: libpri1 >= 0.6 * Closes: #279905: dependency issue breaks voicemail setup * Build-Depends: asterisk-sounds-main (>= 1.0.2) * Closes: #269942: package Debian asterisk-sounds * Rename asterisk-sounds to asterisk-sounds-main to avoid upstream conflict * Closes: #277404: Please split out GTK console * Split off asterisk-gtk-console package to contain all X11 dependancies asterisk (1:1.0.2-1) unstable; urgency=low * New upstream release * Closes: #279540: Please package newer version of asterisk * Closes: #275808: logrotate errors and emails asterisk (1:1.0.1-1) unstable; urgency=low * New upstream release asterisk (1:1.0.0-4) unstable; urgency=high * Urgency high for sarge release * Closes: #273570: asterisk-sounds: sounds/letters directory is missing asterisk (1:1.0.0-3) unstable; urgency=low * Closes: #273780: under ALSA, infinite-loops immediately on installation * Comment out autoload of chan_oss from modules.conf * Closes: #272999: asterisk_1:0.9.1+1.0RC2-2_hppa: FTBFS: [anaFilter.o] Error 1 * Version 1.0.0 now builds on hppa * Closes: #273576: chan_zap.so module is missing * check for ../include/linux/zaptel.h in channels/Makefile * Closes: #273572: Music on hold has wrong default directory * refer to correct /usr/share/asterisk/mohmp3 directory asterisk (1:1.0.0-2) unstable; urgency=medium * Rebuild with zaptel.h_1.0.0 and libpri-dev_1.0.0 asterisk (1:1.0.0-1) unstable; urgency=low * New upstream release asterisk (1:0.9.1+1.0RC2-2) unstable; urgency=low * Use asterisk.8.gz man page * Remove back PROC optomizations from Makefile, enable build on hppa asterisk (1:0.9.1+1.0RC2-1) unstable; urgency=low * New upstream release * Back out dpatch (Makes new upstream release straight forward) asterisk (1:0.9.1+1.0RC1-8) unstable; urgency=medium * debian/patches/11_makefile-sanitize.dpatch: fixed patch to make gsm work again. (Closes: #266167) asterisk (1:0.9.1+1.0RC1-7) unstable; urgency=low * debian/rules, debian/patches/10_rollup-1.0-1.dpatch, debian/patches/11_makefile-sanitize.dpatch: Incorporate fixes proposed by Thiemo Seufer . Should fix the FTBFS on hppa. asterisk (1:0.9.1+1.0RC1-6) unstable; urgency=low * debian/control: suggest gnomemeeting. (At least tell people, which clients they need) Also add dpatch as Build-Dep. (Closes: #265036) * Closes: #262011: SIP cancels fail due to Request-URI mismatch * debian/patches/20_chan_sip.dpatch: Apply chan_sip patch from Jan Niehusmann asterisk (1:0.9.1+1.0RC1-5) unstable; urgency=low * debian/control: make sure we're rebuilding with rtti enabled openh323 * debian/rules: make svn-buildpacakge not choke on failing clean target asterisk (1:0.9.1+1.0RC1-4) unstable; urgency=low * Cleanup wierd .diff.gz file asterisk (1:0.9.1+1.0RC1-2) unstable; urgency=low * Cleanup codecs/ilbc/Makefile to remove -march sillyness (which is already defined above anyway * Debian already has libedit.a Don't build, fails on mips anyway due to old config.guess asterisk (1:0.9.1+1.0RC1-1) unstable; urgency=low * New upstream release (Closes: Bug#260370) * Closes: #247401: doesn't upgrade cleanly - initscript problems ? asterisk (1:0.9.1-3) unstable; urgency=low * allow init.d/asterisk distribution via GPL * Remove -I/usr/include/ptlib/unix from h323 Makefile, Thanks Ray Dassen (Closes: Bug#259564) * Closes: #259572: Unmet dependencies * Maintainer: Debian VoIP Team Uploaders: Mark Purcell , Kilian Krause , Jose Carlos Garcia Sogo , Goedson Teixeira Paixao , Santiago Garcia Mantinan * Next step. Get this all back into svn! asterisk (1:0.9.1-2) unstable; urgency=low * Rebuild with libopenh323-dev (1.12.2-4) from sarge for H.323 support asterisk (1:0.9.1-1) unstable; urgency=low * New upstream release. Previous version WAS tagged as 1.0 in CVS :-( * Closes: #249046: no ring indication * Closes: #254654: init.d/asterisk restart kills asterisk * Build-Depends: libgtk1.2-dev, libspeex-dev (Closes: Bug#253639) * Turn off broken H.323 support (Closes: Bug#255662) * Closes: #250302: Package description is slightly outdated and incorrect * Closes: #255685: Syntax error in configuration file, /etc/asterisk/sip.conf * Closes: #228722: please add postgres support for asterisk asterisk (1.0-1) unstable; urgency=low * New upstream release asterisk (0.9.0-2) unstable; urgency=low * Apply Cisco Call Manager compatability patch from http://bugs.digium.com/bug_view_page.php?bug_id=0001099. Thanks Andre Beck asterisk (0.9.0-1) unstable; urgency=low * New upstream release asterisk (0.7.2-4) unstable; urgency=low * Update channels/h323/Makefile Closes: #235010: asterisk_0.7.2-3(unstable/sparc): arch-dependent CFLAGS asterisk (0.7.2-3) unstable; urgency=low * Add Build-Depends: libopenh323-dev (Closes: Bug#233649) asterisk (0.7.2-2) unstable; urgency=low * Build-Depends: libpri-dev (Closes:Bug#199548) * Include Suggests: rate-engine asterisk (0.7.2-1) unstable; urgency=low * New upstream release asterisk (0.7.1-3) unstable; urgency=low * Build with libopenh323 support (Closes: Bug#195233) * Include Suggests: ohphone asterisk (0.7.1-2) unstable; urgency=low * Remove ppc fixup in codecs/lpc10/Makefile again. Prevents build on ia64, mk68 et al asterisk (0.7.1-1) unstable; urgency=low * New upstream release * i686 optomised build asterisk (0.7.0-1) unstable; urgency=low * LCA2004 release. Thanks Internode for the wireless access * New upstream release * Clean up bad symlinks in vm (Closes: Bug#220714) * Apply restart gracefully patch from Nick Estes (Closes: Bug#217004) * Fixup permission/ ownership problems in /etc/asterisk (Closes: Bug#216995) * Fixup master call log issues (Closes: Bug#217003) * Remove Build-Depends: libmysql-dev - see doc/README.mysql (Closes: Bug#222255) * Build with include/linux/zaptel.h from zaptel-0.8.0.tar.gz * Include Build-Depends: postgresql-dev * Include Build-Depends: unixodbc-dev asterisk (0.5.0-2) unstable; urgency=low * Build-Depends: debhelper (>= 4.0.4) (Closes: Bug#216725) asterisk (0.5.0-1) unstable; urgency=low * New upstream release (Closes: Bug#196761) * Build with include/linux/zaptel.h from zaptel-0.7.0.tar.gz asterisk (0.4.0-6) unstable; urgency=low * Include dh_install in debian/rules (Closes: Bug#207879) asterisk (0.4.0-5) unstable; urgency=low * Rebuild for libnewt-utf8-0 (NOT AVAILABLE) * Build-Depend: libnewt-dev asterisk (0.4.0-4) unstable; urgency=low * include Build-Depends: libgtk1.2-dev (Closes: Bug#194489) asterisk (0.4.0-3) unstable; urgency=low * Rebuild for libtonezone-0.60, libzaptel-0.60 * Change codecs/codec_gsm.c:#include (Closes: Bug#190082) * Start after isdnactivecards debian/rules dh_installinit (Closes: Bug#191062) * Change to Build-Depends: libnetw-utf8-dev * Update Tormenta URL in debian/control asterisk (0.4.0-2) unstable; urgency=low * Remove ppc 'fixup' in codecs/lpc10/Makefile (Closes: Bug#189743) * Updated description (Closes: Bug#168779) asterisk (0.4.0-1) unstable; urgency=low * New upstream release * cdr/Makefile CFLAGS+=-fPIC -DPIC (Closes: Bug#188915) * Include include/linux/zaptel.h from zaptel-0.6.0.tar.gz asterisk (0.3.0-2) unstable; urgency=low * Build-Depends: libmysqlclient-dev, libgtk2.0-dev (Closes: Bug#188188) asterisk (0.3.0-1) unstable; urgency=low * New upstream release * channels/chan_zap_new.c is depreciated * Debian patches to upstream Makefile are a lot cleaner!! * Update /etc/init.d/asterisk stop to use 'stop now' command * Hack AST_DATA_DIR to provide asterisk-sounds under /usr/share/asterisk * `chown asterisk.asterisk /var/lib/asterisk` on install * Remove dh_undocumented * chan_oss failing again :-( * Force Depends: libspeex1 (dpkg-shlibs bug?) asterisk (0.2.0-cvs20030103-3) unstable; urgency=low * Include Build-Depends: libasounds2-dev * Update channels/Makefile to include Debian zaptel.h dir (Closes: Bug#178868) * Thanks to mdz for the new libzap-dev and other patches asterisk (0.2.0-cvs20030103-2) unstable; urgency=low * Revert -march in codecs/lpc10/Makefile asterisk (0.2.0-cvs20030103-1) unstable; urgency=low * New upstream release * Use invoke-rc.d in logrotate script (Closes: Bug#174633) asterisk-flite (3.0-4) unstable; urgency=medium . * drop obsolete source file README.source * simplify rules; use debhelper compatibility level 13 (not 9); build-depend on debhelper-compat dh-sequence-asterisk (not asterisk-dev cdbs debhelper dh-buildinfo) * install to multiarch paths * update copyright info: + use Reference field (not License-Reference); tighten lintian overrides + update coverage + update Source URIsto only track canonical Github source * simplify source helper script copyright-check asterisk-flite (3.0-3) unstable; urgency=medium . * Team upload . [ Jonas Smedegaard ] * Update copyright info: Fix source URLs. . [ Bernhard Schmidt ] * Add missing upstream CFLAG (Closes: #919738) asterisk-flite (3.0-2) unstable; urgency=medium . * Add patch cherry-picked upstream to fix compile under Asterisk 15. * Refactor to limit use of CDBS: + Stop auto-resolve build-dependencies when in CDBS maintainer mode. * Update watch file: + Fix gpb/gbp typo in usage comment. Thanks to Cyril Brulebois. * Declare compliance with Debian Policy 4.2.1. * Set Rules-Requires-Root: no. * Use https protocol for Homepage and Upstream-Contract URLs. * Tighten lintian overrides regarding License-Reference. * Update Vcs-* fields: Source hosted at Salsa.debian.org now. * Use package section optional (not obsolete extra). asterisk-flite (3.0-1) unstable; urgency=medium . [ upstream ] * Nre release. . [ Jonas Smedegaard ] * Ease git-based maintenance: Add git-buildpackage configuration. * Modernize cdbs: + Do copyright-check in maintainer script (not during build). * Modernize Vcs-* fields: Use git (not cgit) in path. * Declare compliance with Debian Policy 4.1.0. * Update copyright info: + Use https protocol in file format URL. + Extend coverage for myself. + Extend coverage for main upstream author. * Advertise DEP-3 format in patch header. * Unfuzz patch. asterisk-flite (2.3-1) unstable; urgency=medium . [ upstream ] * New release. + Proper temp file handling. . [ Jonas Smedegaard ] * Move packaging to Debian VoIP team. * Bump debhelper compatibility level to 9. * Update copyright info: + Use License-Grant and License-Reference fields. Thanks to Ben Finney. + Extend coverage of Debian packaging. * Add lintian override regarding license in License-Reference field. See bug#786450. * Simplify abi resolving using grep -P. * Declare compliance with Debian Policy 3.9.8. * Update watch file: + Bump file format to version 4. + Refine pattern based on documentation. + Mangle download filename. + Mention gbp in usage comment. * Drop CDBS get-orig-source target: Use gbp import-orig --uscan. asterisk-flite (2.2-1) unstable; urgency=low . [ upstream ] * New release. + Fix compatibility with asterisk 11. Closes: bug#725543. Thanks to David Suárez. + Code cleanups. Better error handling in config file parsing. + Fix unresolved symbol issues with Ubuntu-based distros. . [ Jonas Smedegaard ] * Update README.source to emphasize that control.in file is *not* a show-stopper for contributions, referring to wiki page for details. * Declare compliance with Debian Policy 3.9.6. * Update Vcs-* field URLs. * Bump debhelper compatibility level to 8. * Update copyright info: + Extend coverage for upstream author. + Extend coverage for myself. + Bump packaging license to GPL-3+. * Update package relations: + Stop suppress optional CDBS build-dependency on devscripts. + Declare (build-)dependencies in rules file for CDBS to resolve. + Fix depend on virtual asterisk API package (or skip if not resolved, to ease backporting). Stop build-depend on asterisk: Not needed after all. Closes: bug#685540. Thanks to Gedalya and Jeremy Lainé. * Update upstream source URLs in watch file and CDBS hints. * Add patch 1001 to apply LDFLAGS to linker, licensed as GPL-2+. * Ease building with git-buildpackage: Git-ignore quilt .pc dir. asterisk-flite (2.1-1.1) unstable; urgency=low . * Non-maintainer upload. * Build-depend on asterisk. Closes: bug#643703 asterisk-flite (2.1-1) unstable; urgency=low * New upstream release. + No longer tied to 1.6 branch of Asterisk. Closes: bug#629750, #644499. Thanks to Ralf Treinen and Lucas Nussbaum. * Update upstream URLs. * Update package releations: + Relax to (build-)depend unversioned on asterisk: no longer tied to 1.6 branch. + Relax to build-depend unversioned on debhelper: required version satisified even in oldstable. + Build-depend on dh-buildinfo. + Newline-delimit package relations. + Update CDBS suppression of optional build-dependencies. * Bump standards-version to 3.9.3. * Use anonscm.debian.org for Vcs-Browser field. * Bump debhelper compat level to 7. * Extend my copyright for Debian packaging. * Update copyright file: + Extend copyright years. + Rewrite using format 1.0. asterisk-flite (0.1~beta2-1) unstable; urgency=low * Initial release. Closes: bug#574385. bazel-platforms (0.0.10-4) unstable; urgency=low . * Update debian/patches/add_toolchain_support_for_loongarch64.patch bazel-platforms (0.0.10-3) unstable; urgency=low . * Add debian/patches/add_toolchain_support_for_loongarch64.patch bazel-platforms (0.0.10-2) unstable; urgency=low . * debian/control: Depends on bazel-rules-license bazel-platforms (0.0.10-1) unstable; urgency=low . * Add debian/gbp.conf for easier using gbp * New upstream version 0.0.10 * debian/bazel-platforms.install: install new files * debian/control: add myself to Uploaders cacti (1.2.31+ds1-1) unstable; urgency=medium . * New upstream version 1.2.31+ds1 - CVE-2026-39893 CVE-2026-39894 CVE-2026-39897 CVE-2026-39899 CVE-2026-39900 CVE-2026-39938 CVE-2026-39948 CVE-2026-39951 CVE-2026-39955 CVE-2026-40079 CVE-2026-40080 CVE-2026-40082 CVE-2026-40083 CVE-2026-40084 CVE-2026-40941 (Closes: 1140813) - Includes old upgrade bug fix (Closes: 1129524) - PHP 8.5 compatible (Closes: 1126452) * Use dh-phpcomposer during build * HTMLPurifier needs a directory it can write to * tests: split debian/upstream in two stanza and adapt for latest upstream * postinst: don't skip upstream install and upgrade tooling * Move ./resource and ./site/scripts to /var/lib/cacti (Closes: #1135250) * d/control: replace php-phpseclib with php-phpseclib3 as dependency (Closes: #1117523) calamares (3.4.2-1.1) unstable; urgency=medium . * Non-maintainer upload. * Build-Depends: libqt6svg6-dev -> qt6-svg-dev (Closes: #1141105) debci (4.2) unstable; urgency=medium . [ Antonio Terceiro ] * incus-lxc: include basic packages in the testbed * .gitlab-ci.yml: let salsa-ci use the release from debian/changelog * debci-worker: wait for testbeds to be available * Draft: Rework debci-update-worker automation (Closes: #1137227) * incus-lxc: avoid first-time use message from incus * Fix documentation build to include extra documentation (Closes: #1137627) * Debci::Collector: warn on empty payload and invalid work directory * incus-lxc: use non-empty cnfiguration file * debci-worker: use /var/tmp for autopkgtest output * ci: use testing * Revert "debci-worker: use /var/tmp for autopkgtest output" * debian/tests/control: drop flaky restriction from test-suite . [ Luca Boccassi ] * Install and use sysusers.d/tmpfiles.d config files . [ Arnaud Rebillout ] * test/debci-test: Fix test directory * debci-test: Replace removed artifacts with empty files * debci-test: Optimize the loop to trim artifacts dir dnsruby (1.74.0-1) unstable; urgency=medium . * Team upload. * New upstream release. * Refresh the upstream metadata. * Refresh the rules file. * Update Standards-Version to 4.7.4, no changes needed. * Use Ruby Testsuite. * Bump debhelper-compat to 14, dropping ${misc:Depends}, ${shlibs:Depends}, and ${ruby:Depends} from runtime dependencies. * Fix build and runtime dependencies. doxysphinx (3.3.12-8) unstable; urgency=medium . [ Tianyu Chen ] * Team upload. * Drop useless B-D on python3-poetry * Move build dependencies to Build-Depends-Indep * Mark build dependencies with nocheck and nodoc profile * Add python3-pytest, multiple test dependencies, and pybuild.testfiles to make tests work * disable tests since it does not work with doxygen v1.15.0 now * Set debian-branch = master in debian/gbp.conf. * Remove redundant Priority: optional from source stanza. * Update standards version to 4.7.4, no changes needed. * Set upstream metadata fields: Bug-Database, Documentation, Repository, Repository-Browse. * Update watch file format version to 5. * Removed Rules-Requires-Root * Use GitHub template in watch file instead of explicit Source/Matching-Pattern. * Set upstream metadata fields: Bug-Submit. * Update to debhelper-compat 14. . [ Alexandre Detiste ] * avoid unreproducible Sphinx extension * remove duplicate "-with python3,sphinxdoc" emacs-jabber (0.12.1-1) unstable; urgency=medium . * Team upload. * New upstream version. * debian/control: - add Build-Depends gpg, needed for OpenPGP unit test emacs-tablist (1.3-1) unstable; urgency=medium . * Team upload. * New upstream release. * debian/control: Bump Standards-Version to 4.7.4, no changes. * debian/control: Drop redundant Priority field. * debian/control: Update to debhelper compat version 14. eog (50.2-1) unstable; urgency=medium . * New upstream release * Update debhelper compat to 14 five-or-more (1:48.1-4) unstable; urgency=medium . * Update debhelper compat to 14 * Update Standards Version to 4.7.4 four-in-a-row (1:3.38.1-6) unstable; urgency=medium . * Update debhelper compat to 14 * Update Standards Version to 4.7.4 gap-autodoc (2026.06.30-1) unstable; urgency=medium . * New upstream release. geary (46.0-14) unstable; urgency=medium . * Update debhelper compat to 14 * Update Standards Version to 4.7.4 girara (2026.07.07-1) unstable; urgency=medium . * New upstream version 2026.07.07 * debian/libgirara5.symbols: Add new symbol glibmm2.68 (2.88.1-1) unstable; urgency=medium . * New upstream release * debian/*.symbols: Add new symbols * Update minimum glib * Update debhelper compat to 14 * Update Standards Version to 4.7.4 gnome-maps (50.2-1) unstable; urgency=medium . * New upstream release * Update to debhelper compat 14 golang-github-valyala-gozstd (1.25.0+ds1-1) unstable; urgency=medium . * New upstream release. * Switch debian/gitlab-ci.yml to debian/salsa-ci.yml. gst-thumbnailers (1.1~alpha-1) unstable; urgency=medium . * New upstream release * d/control: Switch to stable dh-compat 14 * d/control: Bump S-V to 4.7.4; no changes needed gupnp-tools (0.12.4-1) unstable; urgency=medium . * New upstream release * Remove remaining patch: applied in new release * Update debhelper compat to 14 * Update Standards Version to 4.7.4 ipfixcol2 (2.8.0+20260519-1) unstable; urgency=low . * Initial upload to sid. kiwi (10.3.7-1) unstable; urgency=medium . * New upstream release last-align (1652-1) unstable; urgency=medium . * New upstream version * Standards-Version: 4.7.4 (routine-update) * Reflow Uploaders field (cme) * Reformat the Last-Update date as ISO YYYY-MM-DD. libarchive (3.8.8-2) unstable; urgency=medium . * debian/patches: - Backport upstream patch to fix a regression causing "Seek error" failures when importing tar archives with systemd's importctl. libcotp (4.2.1-1) unstable; urgency=medium . * New upstream version 4.2.1. * Bump Debhelper compat level to 14. * Bump Standards-Version to 4.7.4. * Update debian/libcotp4.symbols. libosl (0.8.0-4.2) unstable; urgency=medium . * Non-maintainer upload. * Use empty install target for arch=all. (Closes: #976483) * Fix ftbfs with boost 1.88 (Closes: #1110596) libosl (0.8.0-4.1) unstable; urgency=medium . * Non-maintainer upload. * Fix FTBFS with CMake 4. (Closes: #1113179) libosl (0.8.0-4) unstable; urgency=medium . * Add graphviz to build-depends for proper doxygen generation. * Re-export all patches with a single git-format-patch. * Fix build with gcc-11 (Closes: #984201) libosl (0.8.0-3) unstable; urgency=low . [ Debian Janitor ] * Trim trailing whitespace. * Use versioned copyright format URI. * Use secure URI in Homepage field. libosl (0.8.0-2) unstable; urgency=medium . * New maintainer, raise package from the grave (Closes: #964732). * Add 0001-Import-svn-r4566.patch to sync with upstream svn. * Fix build with boost 1.67+ (Closes: #915761). * Set DH_VERBOSE=1. * Switch to debhelper compat v12, * remove non-matching install patterns * update doc-base to point to doc in doc/libosl-dev/ * remove now-unnecessary dh '--parallel' option * Update Vcs-* for new salsa repo. * Explicitly link with relevant boost libraries. * Bump Standards-Version to 4.5.0. * Fix 'unkown' typo (lintian). libosl (0.8.0-1.4) unstable; urgency=medium . * Non-maintainer upload. * makefile.conf: Append to CXXFLAGS instead of overwriting them. * detect-sse.patch: New, disable SSE unless the compiler advertised it. * Don't set DEB_CXXFLAGS_MAINT_APPEND any longer. libosl (0.8.0-1.3) unstable; urgency=medium . * Non-maintainer upload. * Ship again makefile.conf, fixing FTBFS in gpsshogi. (Closes: #861033) libosl (0.8.0-1.2) unstable; urgency=medium . * Non-maintainer upload. * Use DEB_CXXFLAGS_MAINT_APPEND to add -DOSL_NO_SSE on i386. (Closes: #852016) * Stop messing around with makefile.conf and makefile.local, they are not used by the CMake buildsystem. * Drop superfluous B-D: quilt. libosl (0.8.0-1.1) unstable; urgency=medium . * Non-maintainer upload. * Import again previously unincorporated NMUs 0.6.0-3.{2,3,4}. * Complete (again) the library package rename after GCC5 ABI break. Closes: #797613 (again) * Use HTTPS in the Vcs-* fields. libosl (0.8.0-1) unstable; urgency=medium . * New upstream release (OSL r4566). * Dynamically generate documents for libosl-doc. libosl (0.6.0-3.4) unstable; urgency=medium . * Non-maintainer upload. * Fix FTBFS with gcc-6, multiple issues. More remain. libosl (0.6.0-3.3) unstable; urgency=medium . * Non-maintainer upload. . [ Steve Langasek ] * Rename library packages for g++5 ABI transition. (Closes: #797613) libosl (0.6.0-3.2) unstable; urgency=medium . * Non-maintainer upload. * Fix build with GCC 5 (Linn Crosetto). Closes: #777964. libosl (0.6.0-3.1) unstable; urgency=medium . * Non-maintainer upload. * Changing B-D on boost to unversioned one. (Closes: #757540) libosl (0.6.0-3) unstable; urgency=medium . * Added new patches: - debian/patches/20140206-makefile_march.patch, to remove march build option. - debian/patches/20140208-no_sse.patch * Enable OSL_NO_SSE for build to support architectures on which SSE is not available. (Closes: #735364) libosl (0.6.0-2) unstable; urgency=low . * Now build-depends on libboost1.54-all-dev. (Closes: #722187) libosl (0.6.0-1) unstable; urgency=low . * New upstream release (OSL r4503). (Closes: #710644) * Removed debian/patches/20120521_cxxflags.patch, which has been applied by the upstream. * Added a patch: - debian/patches/20130721-TIME_UTC.patch to fix a compile error. - debian/patches/20130803-kingTable.cc.patch to fix a link error. * debian/control: Bumped up Standards-Version to 3.9.4. libosl (0.5.0-1) unstable; urgency=low * New upstream release (OSL r4468). * debian/control: - Use the Boost 1.49 packages. (Closes: #672746) - Bumped up Standards-Version to 3.9.3. - Build-Depends on dpkg-dev. * debian/makefile.local.*: Followed the upstream changes. * Added debian/patches/20120521_cxxflags.patch: hardening friendly. libosl (0.4.3-1) unstable; urgency=low * New upstream release (OSL r4424). libosl (0.4.2-1) unstable; urgency=low * New upstream release (OSL r4384). (Closes: #633470, #633473) libosl (0.4.0-1) unstable; urgency=low * New upstream release (OSL r4353). (Closes: #615676, #625371) * debian/control: - Bumped up Standards-Version: 3.9.2. - Build with Boost 1.46. * debian/rules: - Support parallel build. * debian/makefile.local.* - Followed a change in Boost. libosl (0.3.0-1) unstable; urgency=low * New upstream release (OSL r4174). * Added debian/source/format file. * debian/control: - Bumped up Standards-Version: 3.8.4. - Build with Boost 1.42. * debian/makefile.local.*: disabled USE_TBB * debian/makefile.local.amd64: added -march=k8. (Closes: #582923) libosl (0.2.0-2) unstable; urgency=low * Added a g++ option, -march=pentium4, for the i386 architecture due to the package requires SSE2. (Closes: #568595) libosl (0.2.0-1) unstable; urgency=low * Initial release. (Closes: #564231) libshumate (1.6.2-1) unstable; urgency=medium . * New upstream release * d/control: Switch to stable dh-compat 14 libversion-perl (1:0.9934-1) unstable; urgency=medium . * Team upload. * Import upstream version 0.9934. libvmod-curl (0.0~git20250603-4) unstable; urgency=medium . * Conflict+Replace with varnish-curl to improve upgrades. (Closes: #1141728) libvmod-curl (0.0~git20250603-3) unstable; urgency=medium . * Rebuild for unstable. . libvmod-curl (0.0~git20250603-2) experimental; urgency=medium . * Converted to a Vinyl Cache vmod. * Binary package renamed from varnish-curl to libvmod-curl. libvmod-curl (0.0~git20250603-2) experimental; urgency=medium . * Converted to a Vinyl Cache vmod. * Binary package renamed from varnish-curl to libvmod-curl. libvmod-digest (6.4+20230816-11) unstable; urgency=medium . * Conflict+Replace with varnish-vmod-digest to improve upgrades. (Closes: #1141724) libvmod-digest (6.4+20230816-10) unstable; urgency=medium . * Rebuild for unstable. libvmod-digest (6.4+20230816-9) experimental; urgency=medium . * Converted to a Vinyl Cache vmod. * Package renamed from varnish-vmod-digest to libvmod-digest. libvmod-geoip2 (0.0~git20250408-5) unstable; urgency=medium . * Conflict+Replace with varnish-geoip2 to improve upgrades. (Closes: #1141723) libvmod-geoip2 (0.0~git20250408-4) unstable; urgency=medium . * Rebuild for unstable. * Fix the package Description. (Closes: #1119991) . libvmod-geoip2 (0.0~git20250408-3) experimental; urgency=medium . * Converted to a Vinyl Cache vmod. * Binary package renamed from varnish-geoip2 to libvmod-geoip2. . libvmod-geoip2 (0.0~git20250408-2) unstable; urgency=medium . * Initial release. libvmod-geoip2 (0.0~git20250408-3) experimental; urgency=medium . * Converted to a Vinyl Cache vmod. * Binary package renamed from varnish-geoip2 to libvmod-geoip2. libvmod-modules (0.28.0-4) unstable; urgency=medium . * Conflict+Replace with varnish-modules to improve upgrades. (Closes: #1141721) libvmod-modules (0.28.0-3) unstable; urgency=medium . * Rebuild for unstable. libvmod-modules (0.28.0-2) experimental; urgency=medium . * New upstream release. * Converted to a Vinyl Cache vmod. * Package renamed from varnish-modules to libvmod-modules. libvmod-re (0.0~git20260528-1) unstable; urgency=medium . * New upstream snapshot. * Rebuild for unstable. * Conflict+Replace with varnish-re to improve upgrades. . libvmod-re (0.0~git20250531-2) experimental; urgency=medium . * Converted to a Vinyl Cache vmod. * Binary package renamed from varnish-re to libvmod-re. libvmod-re (0.0~git20250531-2) experimental; urgency=medium . * Converted to a Vinyl Cache vmod. * Binary package renamed from varnish-re to libvmod-re. libvmod-selector (2.6.0+20260705-2) unstable; urgency=medium . * Conflict+Replace with varnish-selector to improve upgrades. (Closes: #1141726) libvmod-selector (2.6.0+20260705-1) unstable; urgency=medium . * New upstream snapshot. * Rebuild for unstable. . libvmod-selector (2.6.0+20260219-1) experimental; urgency=medium . * Converted to a Vinyl Cache vmod. * Binary package renamed from varnish-selector to libvmod-selector. libvmod-selector (2.6.0+20260219-1) experimental; urgency=medium . * Converted to a Vinyl Cache vmod. * Binary package renamed from varnish-selector to libvmod-selector. libyuv (0.0.1949.20260706-1) unstable; urgency=medium . * New upstream snapshot. * debian/libyuv0.shlibs: Bump required version. * debian/patches/: + 0005-cpuid-only-build-VDPPHPS-probe-when-target-has-SSE.patch: Add patch to fix compilation on Debian i386 architecture. (Closes: #1141426) libyuv (0.0.1948.20260702-1) unstable; urgency=medium . * New upstream snapshot. * debian/control: Bump debhelper compat to v14. * debian/libyuv0.shlibs: Bump required version. live-installer (60) unstable; urgency=medium . * Team upload. . [ Roland Clobus ] * Drop jessie-specific code. * Update standards-version; no changes required. * Update path for usrmerge (Closes: #1122349). * Move file system support files to a more intuitive location. * Remove unneeded conditional checks of depmod. llama.vim (0.0~git20260605.77db2af-1) unstable; urgency=medium . * Salsa: Set SALSA_CI_IGNORED_BRANCHES to ignore llama.cpp-dev * New upstream version 0.0~git20260605.77db2af m17n-db (1.8.13-1) unstable; urgency=medium . * New upstream version 1.8.13 mobilitydb (1.3.0-2) unstable; urgency=medium . [ Christoph Berg ] * debian/pgversions: Bump to 14+ to match PostGIS 3.7. . [ Bas Couwenberg ] * Strip the patch word from the GEOS version to fix FTBFS with GEOS 3.15.0. (Closes: #1141825) mongo-c-driver (2.3.2-1) unstable; urgency=medium . * New upstream release nautilus (50.2.2-1) unstable; urgency=medium . * New upstream release * Recommend xdg-desktop-portal-gnome for "Set as Background" feature nextcloud-desktop (33.0.7-1) unstable; urgency=medium . * New upstream release (Closes: #1138393). * Use debhelper-compat after Debhelper 14 is released. * Update Vcs-Git link to point to default branch. * Release to unstable. nextcloud-desktop (33.0.2-3) experimental; urgency=medium . * virtual packages do not allow version dependecies. nextcloud-desktop (33.0.2-2) experimental; urgency=medium . * Build against Debheler 14. node-linagora-rabbitmq-client (0.2.1+~cs3.0.1-2) unstable; urgency=medium . * Apply multiarch hints from UDD node-linagora-rabbitmq-client (0.2.1+~cs3.0.1-1) unstable; urgency=medium . * Initial release (Closes: #1141375) node-microsoft-fast (0~20260528+ds1+~1.1.1~git+~5.3.1~git+~cs14.79.39-7) unstable; urgency=medium . * Team upload * MA: foreign pangomm (2.46.5-1) unstable; urgency=medium . * New upstream release * Update debhelper compat to 14 patroni (4.1.4-1) unstable; urgency=medium . * New upstream release. * debian/patches/avoid_overwriting_configuration_during_boostrap.patch: Refreshed. * debian/patches/fix_failing_test.patch: Removed, included upstream. * debian/tests/control: Add procps to acceptance tests dependencies (Closes: #1136549). pgstat (1.4.0-2) unstable; urgency=medium . * Update watch file to version 5. pinto (0.14000-5) unstable; urgency=medium . [ Luca Boccassi ] * Install and use sysusers.d/tmpfiles.d config files . [ gregor herrmann ] * Update years of packaging copyright. * Drop dependency on lsb-base. praat (6.6.30+dfsg-1) unstable; urgency=medium . * New upstream version 6.6.30+dfsg * Drop patches (applied upstream): + d/p/honor-cppflags.patch + d/p/cross-build.patch * Fix upstream icon issues + debian/patches/real-file-icon.patch: Drop patch (fixed upstream) + debian/praat.xpm: Drop file * Refresh patches for new upstream version: + d/p/avoid-dangling-hyperlinks.patch + d/p/drop-no-pie.patch + d/p/praat-launch-in-desktop.patch + d/p/use-ldflags.patch * New patches: + d/p/destdir-in-makefile.patch + d/p/install-in-makefile.patch + d/p/no-url-description-para.patch + d/p/copyright-metainfo-xml.patch + d/p/honor-compilation-flags.patch * Add Bash completion file upstream + d/p/bash-completion.patch: New patch + b/praat.bash: Drop file * d/clean: Update list of files to remove * d/control: + Bump debhelper compatibility level to 14 + Drop superfluous use of ${misc:Depends} and ${shlibs:Depends} * d/copyright: Reflect upstream changes * Better specification of files for dh_install + debian/dirs.in: Drop file + debian/install.in: Drop file + debian/praat.install: New file + debian/rules: Drop the auomatic generation of d/dir and d/install files * d/rules: + Drop useless variable DESTDIR + Simplify the build of the praat and praat_nogui binaries - With the new upstream Makefile, building the Praat binaries is much simpler. There is no need to adjust makefile.defs anymore. - The man pages (praat.1, praat_nogui.1, and praat-launch.1) are now prerequisites of execute_before_dh_installman. - The file d/mk-vars-hardening is removed. + Set the PREFIX variable + Use execute_after_dh_installchangelogs instead of override_dh_auto_install python-ase (3.28.0-2) unstable; urgency=medium . * Team upload. * build docs using ase script in pybuild home_dir for default python (i.e. set PATH to the scripts subdir when building docs) * debian patch doc_no_asap3.patch generates examples docs for md tutoral using internal asap since the faster performing external asap3 module is not packaged for debian. Closes: #1132518 * Build-Depends: python3-sphinx-gallery, python3-sphinxcontrib-video, ffmpeg, gpaw (for doc build) * debian patch fix_pytest9.1_list_MR4136.patch applies upstream MR#4136 using lists to fix tests with pytest9.1. Closes: #1140872 * Standards-Version: 4.7.4 python-gspread (6.2.1-1) unstable; urgency=medium . * New upstream version 6.2.1. * Update watchfile to version 5 and switch to GitHub. * Remove redundant Priority: optional from source stanza. * Update standards version to 4.7.4, no changes needed. * Add UpstreamMetadata. * Use dh-sequence-python3 instead of dh-python. * Add dependencies for tests. * Fixup pytest fixtures. * Add salsa-ci.yml. * Fix Source field of copyright file. python-libevdev (0.13.1-2) unstable; urgency=medium . [ Alexandre Detiste ] * Apply multi-arch hints: add “Multi-Arch: foreign” to python-libevdev-doc. . [ Stephen Kitt ] * Mark python3-pytest as . Closes: #1141475. * Add support for the nodoc build-profile. * Drop “Priority: optional” since it’s now the default. * Standards-Version 4.7.4, no further change required. * Bump to debhelper compatibility level 14. python-nameparser (1.3.0-1) unstable; urgency=medium . * New upstream release. * Update to debhelper compatibility level 14. * Add dh-sequence-single-binary. * Remove debhelper compat 14 auto-applied substvars. * Prefix debhelper files with the binary package name. python-semantic-release (10.6.1-1) unstable; urgency=medium . * New upstream release. * Rebase 0002-patch-out-importlib-resources.patch. * Update Standards-Version. * Update to debhelper compatibility level 14. * Add dh-sequence-single-binary. * Remove debhelper compat 14 auto-applied substvars. * Prefix debhelper files with the binary package name. python-textparser (0.26.2+ds-1) unstable; urgency=medium . * New upstream version 0.26.2+ds * d/control: - add b-dep sphinx-copybutton for docs - add b-dep python3-setuptools-scm qbittorrent (5.2.3-1) unstable; urgency=medium . * New upstream bugfix release. qca2 (2.3.10-3) unstable; urgency=medium . * Team upload. . [ Aurélien COUDERC ] * Update build-deps and deps with the info from cmake. * Bump Standards-Version to 4.7.4, no change required. * Backport upstream commit: Compile with openssl4. [6a7ddd76] Thanks Ravi Kant Sharma for the hint. (Closes: #1138313) qtestsign (0.0~git20250813.f3df53a-2) unstable; urgency=medium . * d/patches: update pyproject patch from upstream review * d/qtestsign.manpages: build manpage under debian/ dir * d/qtestsign.clean: clean auto-generated manpage * d/gbp.conf: enable pristine-tar r-cran-huge (1.6-1) unstable; urgency=medium . * Team upload. * Fix broken watch file using CRAN template. * New upstream version * Standards-Version: 4.7.4 (routine-update) * Restrict to R packages team core architectures (routine-update) * Drop 'Rules-Requires-Root: no' from d/control (routine-update) r-cran-igraph (2.3.3-1) unstable; urgency=medium . * Team upload. * New upstream version * Restrict to R packages team core architectures (routine-update) r-cran-libcoin (1.0-13-1) unstable; urgency=medium . * Team upload. * Fix watch file with CRAN template. * New upstream version * Standards-Version: 4.7.4 (routine-update) * Restrict to R packages team core architectures (routine-update) * Drop 'Rules-Requires-Root: no' from d/control (routine-update) r-cran-mets (1.3.11+dfsg-1) unstable; urgency=medium . * Team upload. * Use uscan v5 $template template. (routine-update) * New upstream version * Standards-Version: 4.7.4 (routine-update) * Restrict to R packages team core architectures (routine-update) * Drop 'Rules-Requires-Root: no' from d/control (routine-update) r-cran-party (1.3-20-1) unstable; urgency=medium . * Team upload. * Fix watch file using CRAN template. * New upstream version * Standards-Version: 4.7.4 (routine-update) * Restrict to R packages team core architectures (routine-update) * Drop 'Rules-Requires-Root: no' from d/control (routine-update) * Remove leading article from Description synopsis. rar (2:7.23-1) unstable; urgency=medium . * New upstream version rsyslog (8.2606.0-4) unstable; urgency=medium . * Upload to unstable rsyslog (8.2606.0-3) experimental; urgency=medium . * Add Build-Depends on gdb. This hopefully provides better diagnosis if one of the tests crashes. rsyslog (8.2606.0-2) experimental; urgency=medium . * config: keep empty include globs silent * testbench: add daemon termination oracle * Use check_LTLIBRARIES to generate liboverride_* test libraries rsyslog (8.2606.0-1) experimental; urgency=medium . * New upstream version 8.2606.0 * Drop patches that have been merged upstream * Fix doc version for sphinx-build (again) * Enable YAML support as recommended by upstream * Update debhelper-compat to 14 * Re-run previously skipped tests. They are hopefully less flaky now. And if not, we want to see the results. ruby-language-server-protocol (3.17.0.6-1) unstable; urgency=medium . * New upstream release. * Refresh the copyright file. * Update Standards-Version to 4.7.4, no changes needed. * Bump debhelper-compat to 14, dropping ${misc:Depends}, ${shlibs:Depends}, and ${ruby:Depends} from runtime dependencies. * Mark as Multi-Arch: foreign. ruby-oauth (1.1.7-1) unstable; urgency=medium . * Team upload. . [ Debian Janitor ] * Bump debhelper from old 12 to 13. * Set upstream metadata fields: Bug-Submit. * Fix typo in debian/rules rules: override_dh_installchangelogs => override_dh_installchangelogs * Update standards version to 4.6.1, no changes needed. . [ Lucas Nussbaum ] * debian/gbp.conf: Add for DEP-14 * debian/.gitattributes: remove * debian/salsa-ci.yml: use team-specific include . [ Simon Quigley ] * Upgrade the watch file to version 5. * New upstream release. * Refresh the upstream metadata. * Refresh the rules file. * Drop {XS,XB}-Ruby-Versions from control. * Update Standards-Version to 4.7.4. * Bump debhelper-compat to 14, dropping ${misc:Depends}, ${shlibs:Depends}, and ${ruby:Depends} from runtime dependencies. * Add missing build dependencies. ruby-oauth (0.5.6-1) experimental; urgency=medium . [ Michael Moll ] * use HTTPS for watch URL . [ Utkarsh Gupta ] * Add salsa-ci.yml . [ Debian Janitor ] * Use secure copyright file specification URI. * Bump debhelper from old 9 to 12. * Set debhelper-compat version in Build-Depends. * Set upstream metadata fields: Bug-Database, Repository, Repository- Browse. * Update standards version to 4.4.1, no changes needed. . [ Cédric Boutillier ] * Update team name * Add .gitattributes to keep unwanted files out of the source package . [ Pirate Praveen ] * Update github watch file regex * New upstream version 0.5.6 (Closes: #970932) (Fixes: CVE-2016-11086) * Bump Standards-Version to 4.5.1 (no changes needed) ruby-oauth-tty (1.0.12-2) unstable; urgency=medium . * No-change rebuild for testing migration. ruby-oauth-tty (1.0.12-1) unstable; urgency=medium . * Initial release. ruby-terser (1.2.8+dfsg-1) unstable; urgency=medium . * Team upload. * New upstream release. * Update Standards-Version to 4.7.4, no changes needed. * Bump debhelper-compat to 14, dropping ${misc:Depends}, ${shlibs:Depends}, and ${ruby:Depends} from runtime dependencies. ruby-xdg (10.3.0-1) unstable; urgency=medium . * Team upload. * New upstream release. * Refresh the copyright file. * Bump debhelper-compat to 14, dropping ${misc:Depends}, ${shlibs:Depends}, and ${ruby:Depends} from runtime dependencies. * Mark as Multi-Arch: foreign. * Add fix-ruby-it-block-param.patch for Ruby 3.3 compatibility. * Add replace-bundler-root.patch for path fixes. rubygems-integration (1.20.1) unstable; urgency=medium . * Team upload. * Do not freeze Gem.operating_system_defaults; RubyGems tests mutate OPERATING_SYSTEM_DEFAULTS. rubygems-integration (1.20) unstable; urgency=medium . * Team upload. . [ Lucas Nussbaum ] * debian/.gitattributes: remove * debian/salsa-ci.yml: use team-specific include . [ Simon Quigley ] * Honor Gem.operating_system_defaults for ssl_ca_cert from ca- certificates. * Fix typo in gem update --system disable message (trough → through). * Expand integration specs for path coverage, ssl_ca_cert, disable message, and DEBIAN_DISABLE_RUBYGEMS_INTEGRATION. * Update Standards-Version to 4.7.4. * Update Source URL in debian/copyright to Salsa. * Drop obsolete Gem::Specification#rubyforge_project= no-op; RubyGems handles it via REMOVED_METHODS. * Add specs covering Gem.bindir, ConfigFile OS defaults, legacy gemspecs, and GEM_PATH reset under RubyGems 4. * Bump debhelper-compat to 14, dropping ${misc:Depends} and ${shlibs:Depends} from runtime dependencies. rust-ab-glyph (0.2.32-2) unstable; urgency=medium . * Team upload * Package ab_glyph 0.2.32 from crates.io using debcargo 2.8.3 rust-ab-glyph-rasterizer (0.1.10-2) unstable; urgency=medium . * Team upload * Package ab_glyph_rasterizer 0.1.10 from crates.io using debcargo 2.8.3 rust-abnf-to-pest (0.5.1-2) unstable; urgency=medium . * Team upload * Package abnf_to_pest 0.5.1 from crates.io using debcargo 2.8.3 rust-abscissa-core (0.9.0-3) unstable; urgency=medium . * Team upload * Package abscissa_core 0.9.0 from crates.io using debcargo 2.8.3 rust-abscissa-derive (0.9.0-2) unstable; urgency=medium . * Team upload * Package abscissa_derive 0.9.0 from crates.io using debcargo 2.8.3 rust-acme-micro (0.14.0-2) unstable; urgency=medium . * Team upload * Package acme-micro 0.14.0 from crates.io using debcargo 2.8.3 rust-acme-redirect (0.8.1+dfsg-3) unstable; urgency=medium . * Team upload * Package acme-redirect 0.8.1 from crates.io using debcargo 2.8.3 rust-adaptive-barrier (1.0.0-2) unstable; urgency=medium . * Team upload * Package adaptive-barrier 1.0.0 from crates.io using debcargo 2.8.3 rust-adler2 (2.0.1-3) unstable; urgency=medium . * Team upload * Package adler2 2.0.1 from crates.io using debcargo 2.8.3 rust-advisory-lock (0.3.0-4) unstable; urgency=medium . * Team upload * Package advisory-lock 0.3.0 from crates.io using debcargo 2.8.3 rust-clap-mangen (0.3.0-1) unstable; urgency=medium . * Team upload. * Drop all patches (obsolete for 0.3). * Package clap_mangen 0.3.0 from crates.io using debcargo 2.8.2 rust-debcargo (2.8.3-2) unstable; urgency=medium . * Team upload. * Package debcargo 2.8.3 from crates.io using debcargo 2.8.3 * Add patch for clap-mangen 0.3. rust-drt-tools (0.3.5-3) unstable; urgency=medium . * Team upload. * Package drt-tools 0.3.5 from crates.io using debcargo 2.8.3 * Stop patching clap-verbosity-flag and itertools dependencies. * Relax dependency on clap-mangen. rust-du-dust (1.2.4-5) unstable; urgency=medium . * Team upload. * Package du-dust 1.2.4 from crates.io using debcargo 2.8.3 * Stop patching clap dependency, it seems to have been the victim of a misapplied patch. * Stop patching lscolors dependency, debian now has 0.21. * Relax dependency on clap-mangen. rust-dysk (3.6.1-2) unstable; urgency=medium . * Team upload. * Package dysk 3.6.1 from crates.io using debcargo 2.8.3 * Relax dependency on clap_mangen crate. rust-gping (1.20.4-1) unstable; urgency=medium . * Team upload. * Package gping 1.20.4 from crates.io using debcargo 2.8.3 * Update relax-deps.diff for new upstream and current situation in Debian. rust-pastel (0.12.0-2) unstable; urgency=medium . * Team upload. * Bump clap_mangen 0.3. * Package pastel 0.12.0 from crates.io using debcargo 2.8.2 rust-prr (0.21.0-1) unstable; urgency=medium . * Team upload. * Package prr 0.21.0 from crates.io using debcargo 2.8.3 * Relax dependency on clap-mangen. rust-roff (1.1.1-1) unstable; urgency=medium . * Team upload. * Add remove-unused-deps.patch * Package roff 1.1.1 from crates.io using debcargo 2.8.2 rust-sequoia-man (0.3.2-2) unstable; urgency=medium . * Team upload. * Bump roff 1. * Package sequoia-man 0.3.2 from crates.io using debcargo 2.8.2 rust-sha1collisiondetection (0.3.4-1) unstable; urgency=medium . * Team upload. * Bump clap_mangen 0.3. * Drop bump-hex-literal.patch (obsolete for 0.3.4). * Package sha1collisiondetection 0.3.4 from crates.io using debcargo 2.8.2 rust-sop (0.8.2-2) unstable; urgency=medium . * Team upload. * Bump clap_mangen 0.3. * Package sop 0.8.2 from crates.io using debcargo 2.8.2 secrets (13.0.1-1) unstable; urgency=medium . * Team upload * New upstream release (Closes: #1133767) * Update debhelper compat to 14 * Update Standards Version to 4.7.4 shockolate (0.8.2+git20251001+ds-2) unstable; urgency=medium . * Change current directory to ${XDG_DATA_HOME}/Interrupt/SystemShock before launching the game, preventing CurrentGame.dat to be written at random location. shockolate (0.8.2+git20251001+ds-1) unstable; urgency=low . * Initial release (Closes: #924048) snapraid (14.7-1) unstable; urgency=medium . * New upstream version 14.7 * Fix the missing version number. (Closes: #1141270) * Rebase existing patches. spice-crypt (3.0.3-3) unstable; urgency=medium . * d/watch: remove debian/watch as upstream is no longer available * d/s/lintian-overrides: add override for missing d/watch spice-crypt (3.0.3-2) unstable; urgency=medium . * d/watch: disable watch as upstream is no longer available * d/rules: generate manpage under debian/ * d/rules: add note about Cargo.lock regeneration * d/source/options: ignore Cargo.lock and .cargo * d/copyright: remove unused licence CC-BY-SA-3.0 stabber (0.0~git20260704.95a186e-1) unstable; urgency=medium . * New upstream version 0.0~git20260704.95a186e tex-fmt (0.5.7+dfsg-4) unstable; urgency=medium . * Fix clap-mangen dependency tex-fmt (0.5.7+dfsg-3) unstable; urgency=medium . * Relax clap-mangen version (Closes: #1141646), thanks to plugwash udisks2-qt6 (6.0.1-1) unstable; urgency=medium . * Initial release. (Closes: #1141585) unuran (1.12.0-1) unstable; urgency=medium . * New upstream version. * Bump standards version to 4.7.4. * d/control: drop RRR. * d/watch: update to version 5. * d/copyright: bump years. vinyl-cache (9.0.1-4) unstable; urgency=medium . * Add more Varnish compatibility: - enable support for the "varnish" top level command in varnishtest - add varnish* symlinks for all vinyl* binaries vinyl-cache (9.0.1-3) unstable; urgency=medium . * Rebuild for unstable. vinyl-cache (9.0.1-2) experimental; urgency=medium . * Enable again the test suite by depending on the new vtest2-source package. vinyl-cache (9.0.1-1) experimental; urgency=medium . * New upstream release. vinyl-cache (9.0.0+20260429-3) experimental; urgency=medium . * New upstream snapshot. vinyl-cache (9.0.0+20260429-2) experimental; urgency=medium . * New upstream snapshot. watcher (16.0.0-3) unstable; urgency=medium . * Add make-watcher-reproducible.patch. wiredpanda (5.1.3-2) unstable; urgency=medium . * Fix FTBFS on armhf and riscv64. wiredpanda (5.1.3-1) unstable; urgency=medium . * New upstream version 5.1.3 - Remove upstream applied patches.