[asterisk-bugs] [JIRA] (ASTERISK-26938) Heap overflow in CSEQ header parsing affects Asterisk chan_pjsip and PJSIP

Matthew Fredrickson (JIRA) noreply at issues.asterisk.org
Mon May 22 14:10:59 CDT 2017


     [ https://issues.asterisk.org/jira/browse/ASTERISK-26938?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Matthew Fredrickson updated ASTERISK-26938:
-------------------------------------------

    Target Release Version/s: 13.15.1
                              14.4.1

> Heap overflow in CSEQ header parsing affects Asterisk chan_pjsip and PJSIP
> --------------------------------------------------------------------------
>
>                 Key: ASTERISK-26938
>                 URL: https://issues.asterisk.org/jira/browse/ASTERISK-26938
>             Project: Asterisk
>          Issue Type: Bug
>          Components: pjproject/pjsip
>    Affects Versions: 14.4.0
>            Reporter: Sandro Gauci
>            Severity: Critical
>              Labels: Security
>      Target Release: 14.4.1, 13.15.1
>
>         Attachments: core-asterisk-1492008299.27652-brief.txt, core-asterisk-1492008299.27652-full.txt, core-asterisk-1492008299.27652-locks.txt, core-asterisk-1492008299.27652-thread1.txt, options2.raw, options.xml, README.md
>
>
> I have included our draft report as an attachment. Please do let me know if this is uncomfortable for you and would like details here.



--
This message was sent by Atlassian JIRA
(v6.2#6252)



More information about the asterisk-bugs mailing list