Log message:
*: rev bump for curl

Log message:
asterisk18:  Update to Asterisk 18.26.4.
pkgsrc change:
- fix PR pkg/59478
## Change Log for Release asterisk-18.26.4
### Links:
 - [Full \ 
ChangeLog](https://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-18.26.4.html)
### Summary:
- Commits: 1
- Commit Authors: 1
- Issues Resolved: 0
- Security Advisories Resolved: 1
  - \ 
[GHSA-557q-795j-wfx2](https://github.com/asterisk/asterisk/security/advisories/GHSA-557q-795j-wfx2): \ 
Resource exhaustion (DoS) vulnerability: remotely exploitable leak of RTP UDP \ 
ports and internal resources
### Commit Authors:
- George Joseph: (1)
## Issue and Commit Detail:
### Closed Issues:
  - !GHSA-557q-795j-wfx2: Resource exhaustion (DoS) vulnerability: remotely \ 
exploitable leak of RTP UDP ports and internal resources
### Commits By Author:
- #### George Joseph (1):
  - pjproject: Update bundled to 2.15.1.
### Commit List:
-  pjproject: Update bundled to 2.15.1.
### Commit Details:
#### pjproject: Update bundled to 2.15.1.
  Author: George Joseph
  Date:   2025-08-25
  This resolves a security issue where RTP ports weren't being released
  causing possible resource exhaustion issues.
  Resolves: #GHSA-557q-795j-wfx2

Log message:
*: recursive bump for tiff growing lerc dependency

Log message:
Update to Asterisk 18.26.3.  This is a security update.
## Change Log for Release asterisk-18.26.3
### Links:
 - [Full \ 
ChangeLog](https://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-18.26.3.html)
### Summary:
- Commits: 2
- Commit Authors: 2
- Issues Resolved: 0
- Security Advisories Resolved: 2
  - \ 
[GHSA-mrq5-74j5-f5cr](https://github.com/asterisk/asterisk/security/advisories/GHSA-mrq5-74j5-f5cr): \ 
Remote DoS and possible RCE in asterisk/res/res_stir_shaken/verification.c
  - \ 
[GHSA-v9q8-9j8m-5xwp](https://github.com/asterisk/asterisk/security/advisories/GHSA-v9q8-9j8m-5xwp): \ 
Uncontrolled Search-Path Element in safe_asterisk script may allow local \ 
privilege escalation.
### User Notes:
### Upgrade Notes:
- #### safe_asterisk: Add ownership checks for /etc/asterisk/startup.d and its files.
  The safe_asterisk script now checks that, if it was run by the
  root user, the /etc/asterisk/startup.d directory and all the files it contains
  are owned by root.  If the checks fail, safe_asterisk will exit with an error
  and Asterisk will not be started.  Additionally, the default logging
  destination is now stderr instead of tty "9" which probably won't exist
  in modern systems.
### Developer Notes:
### Commit Authors:
- George Joseph: (1)
- ThatTotallyRealMyth: (1)
## Issue and Commit Detail:
### Closed Issues:
  - !GHSA-mrq5-74j5-f5cr: Remote DoS and possible RCE in \ 
asterisk/res/res_stir_shaken/verification.c
  - !GHSA-v9q8-9j8m-5xwp: Uncontrolled Search-Path Element in safe_asterisk \ 
script may allow local privilege escalation.
### Commits By Author:
- #### George Joseph (1):
  - res_stir_shaken: Test for missing semicolon in Identity header.
- #### ThatTotallyRealMyth (1):
  - safe_asterisk: Add ownership checks for /etc/asterisk/startup.d and its files.
### Commit List:
-  safe_asterisk: Add ownership checks for /etc/asterisk/startup.d and its files.
-  res_stir_shaken: Test for missing semicolon in Identity header.
### Commit Details:
#### safe_asterisk: Add ownership checks for /etc/asterisk/startup.d and its files.
  Author: ThatTotallyRealMyth
  Date:   2025-06-10
  UpgradeNote: The safe_asterisk script now checks that, if it was run by the
  root user, the /etc/asterisk/startup.d directory and all the files it contains
  are owned by root.  If the checks fail, safe_asterisk will exit with an error
  and Asterisk will not be started.  Additionally, the default logging
  destination is now stderr instead of tty "9" which probably won't exist
  in modern systems.
  Resolves: #GHSA-v9q8-9j8m-5xwp
#### res_stir_shaken: Test for missing semicolon in Identity header.
  Author: George Joseph
  Date:   2025-07-31
  ast_stir_shaken_vs_verify() now makes sure there's a semicolon in
  the Identity header to prevent a possible segfault.
  Resolves: #GHSA-mrq5-74j5-f5cr

Log message:
PR/58978 -- comms/asterisk build fails if prefix is not /usr/pkg
Thanks to Taylor Campbell for the patch.  Ride recent version bump.
No pullup since branching will be soon.

Log message:
Update to Asterisk 18.26.2:
pkgsrc changes
- add gsed to USE_TOOLS
- appease pkglint somewhat
## Change Log for Release asterisk-18.26.2
### Links:
 - [Full \ 
ChangeLog](https://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-18.26.2.html)
 - [GitHub Diff](https://github.com/asterisk/asterisk/compare/18.26.1...18.26.2)
### Summary:
- Commits: 2
- Commit Authors: 1
- Issues Resolved: 0
- Security Advisories Resolved: 2
  - \ 
[GHSA-2grh-7mhv-fcfw](https://github.com/asterisk/asterisk/security/advisories/GHSA-2grh-7mhv-fcfw): \ 
Using malformed From header can forge identity with ";" or NULL in \ 
name portion
  - \ 
[GHSA-c7p6-7mvq-8jq2](https://github.com/asterisk/asterisk/security/advisories/GHSA-c7p6-7mvq-8jq2): \ 
cli_permissions.conf: deny option does not work for disallowing shell commands
### User Notes:
- #### asterisk.c: Add option to restrict shell access from remote consoles.
  A new asterisk.conf option 'disable_remote_console_shell' has
  been added that, when set, will prevent remote consoles from executing
  shell commands using the '!' prefix.
  Resolves: #GHSA-c7p6-7mvq-8jq2
## Issue and Commit Detail:
### Closed Issues:
  - !GHSA-2grh-7mhv-fcfw: Using malformed From header can forge identity with \ 
";" or NULL in name portion
  - !GHSA-c7p6-7mvq-8jq2: cli_permissions.conf: deny option does not work for \ 
disallowing shell commands

Log message:
Update to Asterisk 18.26.1
## Change Log for Release asterisk-18.26.1
### Links:
 - [Full \ 
ChangeLog](https://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-18.26.1.md)
 - [GitHub Diff](https://github.com/asterisk/asterisk/compare/18.26.0...18.26.1)
### Summary:
- Commits: 1
- Commit Authors: 1
- Issues Resolved: 0
- Security Advisories Resolved: 1
  - \ 
[GHSA-33x6-fj46-6rfh](https://github.com/asterisk/asterisk/security/advisories/GHSA-33x6-fj46-6rfh): \ 
Path traversal via AMI ListCategories allows access to outside files
### User Notes:
- #### manager.c: Restrict ListCategories to the configuration directory.
  The ListCategories AMI action now restricts files to the
  configured configuration directory.
### Commit List:
-  manager.c: Restrict ListCategories to the configuration directory.
### Commit Details:
#### manager.c: Restrict ListCategories to the configuration directory.
  Author: Ben Ford
  Date:   2024-12-17
  When using the ListCategories AMI action, it was possible to traverse
  upwards through the directories to files outside of the configured
  configuration directory. This action is now restricted to the configured
  directory and an error will now be returned if the specified file is
  outside of this limitation.
  Resolves: #GHSA-33x6-fj46-6rfh
  UserNote: The ListCategories AMI action now restricts files to the
  configured configuration directory.
## Change Log for Release asterisk-18.26.0
### Links:
 - [Full \ 
ChangeLog](https://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-18.26.0.md)
 - [GitHub Diff](https://github.com/asterisk/asterisk/compare/18.25.0...18.26.0)
### Summary:
- Commits: 28
- Commit Authors: 7
- Issues Resolved: 13
- Security Advisories Resolved: 0
### User Notes:
- #### manager.c: Restrict ModuleLoad to the configured modules directory.
  The ModuleLoad AMI action now restricts modules to the
  configured modules directory.
- #### manager: Enhance event filtering for performance
  You can now perform more granular filtering on events
  in manager.conf using expressions like
  `eventfilter(name(Newchannel),header(Channel),method(starts_with)) = PJSIP/`
  This is much more efficient than
  `eventfilter = Event: Newchannel.*Channel: PJSIP/`
  Full syntax guide is in configs/samples/manager.conf.sample.
- #### db.c: Remove limit on family/key length
  The `ast_db_*()` APIs have had the 253 byte limit on
  "/family/key" removed and will now accept families and keys with a
  total length of up to SQLITE_MAX_LENGTH (currently 1e9!).  This
  affects the `DB*` dialplan applications, dialplan functions,
  manager actions and `databse` CLI commands.  Since the
  media_cache also uses the `ast_db_*()` APIs, you can now store
  resources with URIs longer than 253 bytes.
### Upgrade Notes:
## Issue and Commit Detail:
### Closed Issues:
  - 487: [bug]: Segfault possibly in ast_rtp_stop
  - 821: [bug]: app_dial:  The progress timeout doesn't cause Dial to exit
  - 881: [bug]: Long URLs are being rejected by the media cache because of an \ 
astdb key length limit
  - 882: [bug]: Value CHANNEL(userfield) is lost by BRIDGE_ENTER
  - 897: [improvement]: Restrict ModuleLoad AMI action to the modules directory
  - 900: [bug]: astfd.c: NULL pointer passed to fclose with nonnull attribute \ 
causes compilation failure
  - 902: [bug]: app_voicemail: Pager emails are ill-formatted when custom \ 
subject is used
  - 916: [bug]: Compilation errors on FreeBSD
  - 924: [bug]: dnsmgr.c: dnsmgr_refresh() should not flag change if IP address \ 
order changes
  - 928: [bug]: chan_dahdi: MWI while off-hook when hung up on after recall ring
  - 937: [bug]: Wrong format for sample config file 'geolocation.conf.sample'
  - 938: [bug]: memory leak - CBAnn leaks a small amount format_cap related \ 
memory for every confbridge
### Commit List:
-  app_dial: Fix progress timeout calculation with no answer timeout.
-  pjproject_bundled:  Tweaks to support out-of-tree development
-  chan_sip.c: Fix __sip_reliable_xmit build error
-  core_unreal.c: Fix memory leak in ast_unreal_new_channels()
-  dnsmgr.c: dnsmgr_refresh() incorrectly flags change with DNS round-robin
-  geolocation.sample.conf: Fix comment marker at end of file
-  func_base64.c: Ensure we set aside enough room for base64 encoded data.
-  app_dial: Fix progress timeout.
-  chan_dahdi: Never send MWI while off-hook.
-  manager.c: Add unit test for Originate app and appdata permissions
-  alembic: Drop redundant voicemail_messages index.
-  res_agi.c: Ensure SIGCHLD handler functions are properly balanced.
-  main, res, tests: Fix compilation errors on FreeBSD.
-  res_rtp_asterisk: Fix dtls timer issues causing FRACKs and SEGVs
-  manager.c: Restrict ModuleLoad to the configured modules directory.
-  res_agi.c: Prevent possible double free during `SPEECH RECOGNIZE`
-  cdr_custom: Allow absolute filenames.
-  astfd.c: Avoid calling fclose with NULL argument.
-  channel: Preserve CHANNEL(userfield) on masquerade.
-  cel_custom: Allow absolute filenames.
-  app_voicemail: Fix ill-formatted pager emails with custom subject.
-  res_pjsip_pubsub: Persist subscription 'generator_data' in sorcery
-  Fix application references to Background
-  manager.conf.sample: Fix mathcing typo
-  manager: Enhance event filtering for performance
-  manager.c: Split XML documentation to manager_doc.xml
-  db.c: Remove limit on family/key length

Log message:
*: recursive bump for jpeg -> libjpeg-turbo switch