[asterisk-bugs] [JIRA] (ASTERISK-29173) Media cache URL requests allow infinite redirects
Friendly Automation (JIRA)
noreply at issues.asterisk.org
Wed Dec 9 13:09:18 CST 2020
[ https://issues.asterisk.org/jira/browse/ASTERISK-29173?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=253035#comment-253035 ]
Friendly Automation commented on ASTERISK-29173:
------------------------------------------------
Change 15194 merged by George Joseph:
res_http_media_cache.c: Set reasonable number of redirects
[https://gerrit.asterisk.org/c/asterisk/+/15194|https://gerrit.asterisk.org/c/asterisk/+/15194]
> Media cache URL requests allow infinite redirects
> -------------------------------------------------
>
> Key: ASTERISK-29173
> URL: https://issues.asterisk.org/jira/browse/ASTERISK-29173
> Project: Asterisk
> Issue Type: Security
> Components: Resources/res_http_media_cache
> Affects Versions: GIT
> Reporter: Sean Bright
> Assignee: Sean Bright
>
> Calling {{Playback(https://seanbright.com/mohr/foobar.sln)}} (which begins a redirect loop) from dialplan will result in Asterisk following redirects until the process is killed.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
More information about the asterisk-bugs
mailing list