Peter Korsgaard bd42aa1d0a package/asterisk: security bump to version 16.28.0 ... Asterisk 16.26.0 fixed the following security issues: - [ASTERISK-29476] – res_stir_shaken: Blind SSRF vulnerabilities https://issues.asterisk.org/jira/browse/ASTERISK-29476 - [ASTERISK-29838] – ${SQL_ESC()} not correctly escaping a terminating \ https://issues.asterisk.org/jira/browse/ASTERISK-29838 - [ASTERISK-29872] – res_stir_shaken: Resource exhaustion with large files https://issues.asterisk.org/jira/browse/ASTERISK-29872 https://www.asterisk.org/asterisk-news/asterisk-16-26-0-now-available/ It unfortunately also introduced a change to chan_iax2, breaking builds without OpenSSL: 59a8cdaca2 Which was again fixed in 16.28.0: f812dfb68c So bump to 16.28.0: https://www.asterisk.org/asterisk-news/asterisk-16-28-0-now-available/ The libxml2 support now uses pkg-config, so drop the libxml2-config handling: bf9dafa7c2 Signed-off-by: Peter Korsgaard <peter@korsgaard.com> [yann.morin.1998@free.fr: - add host-pkgconf dep, don't rely on implicit dep from host-asterisk ] Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>		2022-11-20 17:41:25 +01:00
..
0001-sounds-do-not-download-and-check-sha1s.patch
0002-configure-fix-detection-of-libcrypt.patch
0003-build-ensure-target-directory-for-modules-exists.patch
0004-install-samples-need-the-data-files.patch
0005-configure-fix-detection-of-re-entrant-resolver-funct.patch
asterisk.hash	package/asterisk: security bump to version 16.28.0	2022-11-20 17:41:25 +01:00
asterisk.mk	package/asterisk: security bump to version 16.28.0	2022-11-20 17:41:25 +01:00
Config.in