[asterisk-bugs] [Asterisk 0011408]: Buffer overflow when maxmsg not used for IMAP storage users
noreply at bugs.digium.com
noreply at bugs.digium.com
Thu Dec 6 14:48:12 CST 2007
A NOTE has been added to this issue.
======================================================================
http://bugs.digium.com/view.php?id=11408
======================================================================
Reported By: jaroth
Assigned To: putnopvut
======================================================================
Project: Asterisk
Issue ID: 11408
Category: Applications/app_voicemail
Reproducibility: random
Severity: crash
Priority: normal
Status: assigned
Asterisk Version: SVN
SVN Branch (only for SVN checkouts, not tarball releases): trunk
SVN Revision (number only!): 90000
Disclaimer on File?: N/A
Request Review:
======================================================================
Date Submitted: 11-28-2007 14:48 CST
Last Modified: 12-06-2007 14:48 CST
======================================================================
Summary: Buffer overflow when maxmsg not used for IMAP
storage users
Description:
When users do not have maxmsg set individually, or when maxmsg is not set,
memory allocation and deallocation of the "deleted" and "heard" arrays can
cause a crash. This patch uses MAXMSG to size these arrays when using
IMAP. This guarantees that the array will always be big enough to hold all
messages that might be accessed. This is even more important when using
IMAP quotas instead of message count to limit the number of messages in a
box, and when mailboxes can be accessed directly from an IMAP mail client.
======================================================================
----------------------------------------------------------------------
jaroth - 12-06-07 14:48
----------------------------------------------------------------------
Modification as indicated.
Issue History
Date Modified Username Field Change
======================================================================
12-06-07 14:48 jaroth Note Added: 0074957
======================================================================
More information about the asterisk-bugs
mailing list