[asterisk-bugs] [JIRA] (ASTERISK-27337) chan_sip: Security vulnerability with client code header (revisited)
Kevin Harwell (JIRA)
noreply at issues.asterisk.org
Mon Apr 1 13:24:12 CDT 2019
[ https://issues.asterisk.org/jira/browse/ASTERISK-27337?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Kevin Harwell updated ASTERISK-27337:
-------------------------------------
Target Release Version/s: 16.3.0
> chan_sip: Security vulnerability with client code header (revisited)
> --------------------------------------------------------------------
>
> Key: ASTERISK-27337
> URL: https://issues.asterisk.org/jira/browse/ASTERISK-27337
> Project: Asterisk
> Issue Type: Bug
> Affects Versions: 13.17.2, 14.6.2, 15.0.0
> Reporter: Richard Mudgett
> Assignee: Richard Mudgett
> Target Release: 13.18.1, 13.19.0, 14.4.1, 15.1.1, 15.2.0, 16.0.0, 16.3.0
>
>
> The fix for ASTERISK-26897 didn't go quite far enough. It fixed setting the userfield for the CDR's Party A but didn't fix the same problem when the CDR's Party B userfield is set.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
More information about the asterisk-bugs
mailing list