[asterisk-bugs] [JIRA] (ASTERISK-26151) Bobby Tables broke my PBX
erebus (JIRA)
noreply at issues.asterisk.org
Sun Jun 26 08:11:56 CDT 2016
erebus created ASTERISK-26151:
---------------------------------
Summary: Bobby Tables broke my PBX
Key: ASTERISK-26151
URL: https://issues.asterisk.org/jira/browse/ASTERISK-26151
Project: Asterisk
Issue Type: Bug
Security Level: None
Components: Resources/res_pjsip
Affects Versions: 13.9.1
Environment: Debian Sid
Reporter: erebus
In source file asterisk/res/res_pjsip/location.c, there are several lines which pass AOR identifiers into regular expressions without proper escaping.
For AORs that include regex metacharacters (such as +0000, bobby+tables or Tables*Bobby), this means that the resulting regex will be incorrect, breaking contact lookups and inbound calling.
I suggest that AOR identifiers be escaped before being inserted into regular expressions.
See also:
• https://xkcd.com/327/
• https://community.asterisk.org/t/pjsip-show-contacts-and-pjsip-dial-contacts-dont-see-my-contact-objects-cannot-receive-calls-in-asterisk-13-9-1/67156
--
This message was sent by Atlassian JIRA
(v6.2#6252)
More information about the asterisk-bugs
mailing list