main · b358e441cd64e8047558519f34a96a95cfe80e48 · Voice / asterisk

AST-2017-010: Fix cdr_object_update_party_b_userfield_cb() buf overrun

Richard Mudgett authored 7 years ago

cdr_object_update_party_b_userfield_cb() could overrun the fixed buffer if
the supplied string is too long.  The long string could be supplied by
external means using the CDR(userfield) function.

This may seem reminiscent to AST-2017-001 (ASTERISK_26897) and it is.  The
earlier patch fixed the buffer overrun for Party A's userfield while this
patch fixes the same thing for Party B's userfield.

ASTERISK-27337

Change-Id: I0fa767f65ecec7e676ca465306ff9e0edbf3b652

b358e441

History

b358e441 7 years ago

History

Name	Last commit	Last update
..
editline
stdtime
.gitignore
Makefile
abstract_jb.c
acl.c
adsi.c
alaw.c
alertpipe.c
aoc.c
app.c
ast_expr2.c
ast_expr2.fl
ast_expr2.h
ast_expr2.y
ast_expr2f.c
asterisk.c
asterisk.dynamics
asterisk.exports.in
astfd.c
astmm.c
astobj2.c
astobj2_container.c
astobj2_container_private.h
astobj2_hash.c
astobj2_private.h
astobj2_rbtree.c
audiohook.c
autochan.c
autoservice.c
backtrace.c
bridge.c
bridge_after.c
bridge_basic.c
bridge_channel.c
bridge_roles.c
bucket.c
buildinfo.c
callerid.c
ccss.c
cdr.c
cel.c
channel.c
channel_internal_api.c
chanvars.c
cli.c
codec.c
codec_builtin.c
config.c
config_options.c
conversions.c
core_local.c
core_unreal.c
crypt.c
cygload.c
datastore.c
db.c
devicestate.c
dial.c
dns.c
dns_core.c
dns_naptr.c
dns_query_set.c
dns_recurring.c
dns_srv.c
dns_system_resolver.c
dns_test.c
dns_tlsa.c
dnsmgr.c
dsp.c
ecdisa.h
endpoints.c
enum.c
event.c
features.c
features_config.c
file.c
fixedjitterbuf.c
fixedjitterbuf.h
format.c
format_cache.c
format_cap.c
format_compatibility.c
frame.c
framehook.c
fskmodem.c
fskmodem_float.c
fskmodem_int.c
global_datastores.c
hashtab.c
heap.c
http.c
image.c
indications.c
io.c
iostream.c
jitterbuf.c
json.c
libasteriskpj.c
libasteriskssl.c