From d4f71b2cd087e99656c7404cd15985a5f5162472 Mon Sep 17 00:00:00 2001
From: Leonardo Arena <rnalrd@alpinelinux.org>
Date: Mon, 16 Sep 2019 14:56:24 +0000
Subject: [PATCH] main/asterisk: security upgrade to 16.5.1

CVE-2019-15297, CVE-2019-15639

ref #10790
---
 main/asterisk/APKBUILD | 15 +++++++++++++--
 1 file changed, 13 insertions(+), 2 deletions(-)

diff --git a/main/asterisk/APKBUILD b/main/asterisk/APKBUILD
index 112f7d46909d..5d8ed16bd45f 100644
--- a/main/asterisk/APKBUILD
+++ b/main/asterisk/APKBUILD
@@ -2,7 +2,7 @@
 # Contributor: Timo Teras <timo.teras@iki.fi>
 # Maintainer: Timo Teras <timo.teras@iki.fi>
 pkgname=asterisk
-pkgver=16.4.1
+pkgver=16.5.1
 pkgrel=0
 pkgdesc="Asterisk: A Module Open Source PBX System"
 pkgusers="asterisk"
@@ -39,6 +39,17 @@ source="$_download/asterisk-$pkgver.tar.gz
 
 builddir="$srcdir/$pkgname-${pkgver/_/-}"
 
+# secfixes:
+#   16.5.1-r0:
+#     - CVE-2019-15297
+#     - CVE-2019-15639
+#   16.4.1-r0:
+#     - CVE-2019-12827
+#   16.3.0-r0:
+#     - CVE-2019-7251
+#   15.7.1-r0:
+#     - CVE-2018-19278
+
 prepare() {
 	default_prepare
 
@@ -224,7 +235,7 @@ sound_en() {
 	chown -R asterisk:asterisk "$subpkgdir"/var/*/asterisk
 }
 
-sha512sums="4eca66fed184ced5be7140b5de2eade3e2f9ed90f7f6a5a43c2dc26d8458ec46607075cd06ecb50ff4f9a06b654daa602be84db93f6749283ed02bcb9a7b4862  asterisk-16.4.1.tar.gz
+sha512sums="9e9e6aae2267d5be53dd6e9fd2979ce00f4be4b057f414103e22f8e3cac1eae20e48edbb6e9e3fd261c53f8075f5d3a40c2af67614438ffd920a1bf65cfe59c5  asterisk-16.5.1.tar.gz
 aacef3f4796fb1abd33266998b53909cb4b36e7cc5ad2f7bac68bdc43e9a9072d9a4e2e7e681bddfa31f3d04575eb248afe6ea95da780c67e4829c1e22adfe1b  asterisk-addon-mp3-r201.patch.gz
 f72c2e04de80d3ed9ce841308101383a1655e6da7a3c888ad31fffe63d1280993e08aefcf8e638316d439c68b38ee05362c87503fca1f36343976a01af9d6eb1  musl-mutex-init.patch
 fdac3868ed2ba566397e3a71314568787e4a84d37738f210a6e288c4285215879756c576e2fd064be9cf5169a7e08dbbfd341f50a87e4e6dbfae20e19bcc4d71  musl-astmm-fix.patch
-- 
GitLab