[asterisk-bugs] [Asterisk 0015271]: [patch] BASE64_DECODE() adds garbage end end of decoded string

Asterisk Bug Tracker noreply at bugs.digium.com
Fri Nov 6 14:31:55 CST 2009


A NOTE has been added to this issue. 
====================================================================== 
https://issues.asterisk.org/view.php?id=15271 
====================================================================== 
Reported By:                chappell
Assigned To:                mnicholson
====================================================================== 
Project:                    Asterisk
Issue ID:                   15271
Category:                   Functions/func_base64
Reproducibility:            always
Severity:                   minor
Priority:                   normal
Status:                     closed
Asterisk Version:           1.4.24 
JIRA:                       SWP-265 
Regression:                 No 
Reviewboard Link:            
SVN Branch (only for SVN checkouts, not tarball releases): N/A 
SVN Revision (number only!):  
Request Review:              
Resolution:                 fixed
Fixed in Version:           
====================================================================== 
Date Submitted:             2009-06-04 10:16 CDT
Last Modified:              2009-11-06 14:31 CST
====================================================================== 
Summary:                    [patch] BASE64_DECODE() adds garbage end end of
decoded string
Description: 
This problem has two causes:

1) BASE64_DECODE() fails to null terminate its return value. This becomes
evident if first a long string is decoded and then a short one.  The short
one will have have the last part of the long string appended to it.

2) What is more, ast_base64decode() does not recognize the equals signs
which pad the end of a string the length of which is not a multiple of
three bytes. Rather than stopping, it decodes the padding as data,
producing bogus output.  
======================================================================
Relationships       ID      Summary
----------------------------------------------------------------------
related to          0011018 patch for 10979 breaks IAX RSA auth
related to          0010979 [path] main/util.c missed *dst='\0'; in...
====================================================================== 

---------------------------------------------------------------------- 
 (0113340) svnbot (reporter) - 2009-11-06 14:31
 https://issues.asterisk.org/view.php?id=15271#c113340 
---------------------------------------------------------------------- 
Repository: asterisk
Revision: 228649

_U  branches/1.6.2/
U   branches/1.6.2/funcs/func_base64.c
U   branches/1.6.2/main/utils.c

------------------------------------------------------------------------
r228649 | mnicholson | 2009-11-06 14:31:53 -0600 (Fri, 06 Nov 2009) | 22
lines

Merged revisions 228620 via svnmerge from 
https://origsvn.digium.com/svn/asterisk/trunk

................
  r228620 | mnicholson | 2009-11-06 13:47:11 -0600 (Fri, 06 Nov 2009) | 15
lines
  
  Merged revisions 228378 via svnmerge from 
  https://origsvn.digium.com/svn/asterisk/branches/1.4
  
  ........
    r228378 | mnicholson | 2009-11-06 10:26:59 -0600 (Fri, 06 Nov 2009) |
8 lines
    
    Properly handle '=' while decoding base64 messages and null terminate
strings returned from BASE64_DECODE.
    
    (closes issue https://issues.asterisk.org/view.php?id=15271)
    Reported by: chappell
    Patches:
          base64_fix.patch uploaded by chappell (license 8)
    Tested by: kobaz
  ........
................

------------------------------------------------------------------------

http://svn.digium.com/view/asterisk?view=rev&revision=228649 

Issue History 
Date Modified    Username       Field                    Change               
====================================================================== 
2009-11-06 14:31 svnbot         Checkin                                      
2009-11-06 14:31 svnbot         Note Added: 0113340                          
======================================================================




More information about the asterisk-bugs mailing list