[asterisk-bugs] [Asterisk 0014278]: [patch] insufficient stringlength checking in action_userevent
Asterisk Bug Tracker
noreply at bugs.digium.com
Mon Jan 19 14:10:01 CST 2009
A NOTE has been added to this issue.
======================================================================
http://bugs.digium.com/view.php?id=14278
======================================================================
Reported By: fnordian
Assigned To: Corydon76
======================================================================
Project: Asterisk
Issue ID: 14278
Category: Core/ManagerInterface
Reproducibility: always
Severity: crash
Priority: normal
Status: closed
Asterisk Version: SVN
Regression: No
SVN Branch (only for SVN checkouts, not tarball releases): 1.6.1
SVN Revision (number only!): 169213
Request Review:
Resolution: fixed
Fixed in Version:
======================================================================
Date Submitted: 2009-01-19 10:18 CST
Last Modified: 2009-01-19 14:10 CST
======================================================================
Summary: [patch] insufficient stringlength checking in
action_userevent
Description:
hi,
there's an error in action_userevent and in userevent_exec which can cause
an overflow of a stringbuffer.
======================================================================
----------------------------------------------------------------------
(0098141) svnbot (reporter) - 2009-01-19 14:10
http://bugs.digium.com/view.php?id=14278#c98141
----------------------------------------------------------------------
Repository: asterisk
Revision: 169368
_U branches/1.6.1/
U branches/1.6.1/apps/app_userevent.c
U branches/1.6.1/main/manager.c
------------------------------------------------------------------------
r169368 | tilghman | 2009-01-19 14:10:01 -0600 (Mon, 19 Jan 2009) | 18
lines
Merged revisions 169365 via svnmerge from
https://origsvn.digium.com/svn/asterisk/trunk
................
r169365 | tilghman | 2009-01-19 14:05:52 -0600 (Mon, 19 Jan 2009) | 11
lines
Merged revisions 169364 via svnmerge from
https://origsvn.digium.com/svn/asterisk/branches/1.4
........
r169364 | tilghman | 2009-01-19 13:49:25 -0600 (Mon, 19 Jan 2009) | 4
lines
Truncate userevents at the end of a line, when the command exceeds the
buffer.
(closes issue http://bugs.digium.com/view.php?id=14278)
Reported by: fnordian
........
................
------------------------------------------------------------------------
http://svn.digium.com/view/asterisk?view=rev&revision=169368
Issue History
Date Modified Username Field Change
======================================================================
2009-01-19 14:10 svnbot Checkin
2009-01-19 14:10 svnbot Note Added: 0098141
======================================================================
More information about the asterisk-bugs
mailing list