[asterisk-bugs] [JIRA] (ASTERISK-24197) Signed integer overflow in string hash functions

Richard Mudgett (JIRA) noreply at issues.asterisk.org
Mon Aug 11 10:18:29 CDT 2014


     [ https://issues.asterisk.org/jira/browse/ASTERISK-24197?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Richard Mudgett updated ASTERISK-24197:
---------------------------------------

    Assignee: Matt Jordan  (was: Diederik de Groot)
      Status: Triage  (was: Waiting for Feedback)

> Signed integer overflow in string hash functions
> ------------------------------------------------
>
>                 Key: ASTERISK-24197
>                 URL: https://issues.asterisk.org/jira/browse/ASTERISK-24197
>             Project: Asterisk
>          Issue Type: Bug
>      Security Level: None
>          Components: General
>    Affects Versions: 12.4.0
>            Reporter: Diederik de Groot
>            Assignee: Matt Jordan
>            Severity: Minor
>
> the strings.h functions:
> ast_str_hash
> ast_str_hash_add
> ast_str_case_hash
> All suffer from signed integer overflow depending on the length of the string and the previous hash value calculated, because the bounds for the int are not checked. 
> 193416315 * 33 cannot be represented in type 'int'



--
This message was sent by Atlassian JIRA
(v6.2#6252)



More information about the asterisk-bugs mailing list