[asterisk-bugs] [Asterisk 0012975]: Crash during make_email_file() when cidname is originally an empty string

noreply at bugs.digium.com noreply at bugs.digium.com
Wed Jul 2 15:34:37 CDT 2008 

The following issue has been RESOLVED. 
====================================================================== 
http://bugs.digium.com/view.php?id=12975 
====================================================================== 
Reported By:                tomo1657
Assigned To:                putnopvut
====================================================================== 
Project:                    Asterisk
Issue ID:                   12975
Category:                   Applications/app_voicemail
Reproducibility:            always
Severity:                   minor
Priority:                   normal
Status:                     resolved
Asterisk Version:           SVN 
SVN Branch (only for SVN checkouts, not tarball releases):  trunk 
SVN Revision (number only!): 127503 
Disclaimer on File?:        N/A 
Request Review:              
Resolution:                 duplicate
Duplicate:                  12954
Fixed in Version:           
====================================================================== 
Date Submitted:             07-02-2008 15:27 CDT
Last Modified:              07-02-2008 15:34 CDT
====================================================================== 
Summary:                    Crash during make_email_file() when cidname is
originally an empty string
Description: 
When the channels' cidname is originally an empty string in an IMAP storage
environment, imap_store_file() calls make_email_file() with the argument
cidname as 0x0 instead of an empty string.

This causes strip_control() inside make_email_file() to crash while trying
to access the cidname pointer contents since it assumes the value is a
string.  I am not sure if chan->cid.cid_name value is supposed to be 0 at
this point, or if this is a result of a bug in the channel code that sets
it to 0 instead of empty string.

The crash is at line 709 in store_file() in app_voicemail.c:

709             for (; *input; input++) {
======================================================================
Relationships       ID      Summary
----------------------------------------------------------------------
duplicate of        0012954 [patch] Segfault at make_email_file
====================================================================== 

---------------------------------------------------------------------- 
 putnopvut - 07-02-08 15:34  
---------------------------------------------------------------------- 
This is the same issue addressed in issue
http://bugs.digium.com/view.php?id=12954. There is a patch on that
issue which is ready for testing and which should fix this crash. Thanks
for reporting and thanks for the detailed bug report! 

Issue History 
Date Modified   Username       Field                    Change               
====================================================================== 
07-02-08 15:34  putnopvut      Note Added: 0089622                          
======================================================================

More information about the asterisk-bugs mailing list