[asterisk-bugs] [Asterisk 0012975]: Crash during make_email_file() when cidname is originally an empty string

noreply at bugs.digium.com noreply at bugs.digium.com
Wed Jul 2 15:27:38 CDT 2008 

The following issue has been SUBMITTED. 
====================================================================== 
http://bugs.digium.com/view.php?id=12975 
====================================================================== 
Reported By:                tomo1657
Assigned To:                
====================================================================== 
Project:                    Asterisk
Issue ID:                   12975
Category:                   Applications/app_voicemail
Reproducibility:            always
Severity:                   minor
Priority:                   normal
Status:                     new
Asterisk Version:           SVN 
SVN Branch (only for SVN checkouts, not tarball releases):  trunk 
SVN Revision (number only!): 127503 
Disclaimer on File?:        N/A 
Request Review:              
====================================================================== 
Date Submitted:             07-02-2008 15:27 CDT
Last Modified:              07-02-2008 15:27 CDT
====================================================================== 
Summary:                    Crash during make_email_file() when cidname is
originally an empty string
Description: 
When the channels' cidname is originally an empty string in an IMAP storage
environment, imap_store_file() calls make_email_file() with the argument
cidname as 0x0 instead of an empty string.

This causes strip_control() inside make_email_file() to crash while trying
to access the cidname pointer contents since it assumes the value is a
string.  I am not sure if chan->cid.cid_name value is supposed to be 0 at
this point, or if this is a result of a bug in the channel code that sets
it to 0 instead of empty string.

The crash is at line 709 in store_file() in app_voicemail.c:

709             for (; *input; input++) {
====================================================================== 

Issue History 
Date Modified   Username       Field                    Change               
====================================================================== 
07-02-08 15:27  tomo1657       Asterisk Version          => SVN             
07-02-08 15:27  tomo1657       SVN Branch (only for SVN checkou =>  trunk       
  
07-02-08 15:27  tomo1657       SVN Revision (number only!) => 127503          
======================================================================

More information about the asterisk-bugs mailing list