[asterisk-bugs] [JIRA] (ASTERISK-21205) [patch] dundi_read_result crash due to negative number

Friendly Automation (JIRA) noreply at issues.asterisk.org
Wed Mar 25 17:24:25 CDT 2020


    [ https://issues.asterisk.org/jira/browse/ASTERISK-21205?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=250037#comment-250037 ] 

Friendly Automation commented on ASTERISK-21205:
------------------------------------------------

Change 13948 merged by Kevin Harwell:
dundi:  fix NULL dereference.

[https://gerrit.asterisk.org/c/asterisk/+/13948|https://gerrit.asterisk.org/c/asterisk/+/13948]

> [patch] dundi_read_result crash due to negative number
> ------------------------------------------------------
>
>                 Key: ASTERISK-21205
>                 URL: https://issues.asterisk.org/jira/browse/ASTERISK-21205
>             Project: Asterisk
>          Issue Type: Bug
>      Security Level: None
>          Components: PBX/pbx_dundi
>    Affects Versions: 11.2.1, 13.18.4
>         Environment: gentoo linux
> kernel 3.7.3
>            Reporter: Jaco Kroon
>              Labels: patch
>         Attachments: asterisk-11.2.1-dundi-segfault-on-fail.patch
>
>
> Should dundi_lookup_internal return a negative number then so will dundi_lookup, which usually gets assigned to num_results, which is an unsigned int.  Later when sorting this number is taken "as is", which then results in an out-of-bounds situation and a segfault (usually).



--
This message was sent by Atlassian JIRA
(v6.2#6252)



More information about the asterisk-bugs mailing list