[asterisk-bugs] [JIRA] (ASTERISK-21205) [patch] dundi_read_result crash due to negative number
Friendly Automation (JIRA)
noreply at issues.asterisk.org
Wed Mar 25 17:24:25 CDT 2020
[ https://issues.asterisk.org/jira/browse/ASTERISK-21205?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=250037#comment-250037 ]
Friendly Automation commented on ASTERISK-21205:
------------------------------------------------
Change 13948 merged by Kevin Harwell:
dundi: fix NULL dereference.
[https://gerrit.asterisk.org/c/asterisk/+/13948|https://gerrit.asterisk.org/c/asterisk/+/13948]
> [patch] dundi_read_result crash due to negative number
> ------------------------------------------------------
>
> Key: ASTERISK-21205
> URL: https://issues.asterisk.org/jira/browse/ASTERISK-21205
> Project: Asterisk
> Issue Type: Bug
> Security Level: None
> Components: PBX/pbx_dundi
> Affects Versions: 11.2.1, 13.18.4
> Environment: gentoo linux
> kernel 3.7.3
> Reporter: Jaco Kroon
> Labels: patch
> Attachments: asterisk-11.2.1-dundi-segfault-on-fail.patch
>
>
> Should dundi_lookup_internal return a negative number then so will dundi_lookup, which usually gets assigned to num_results, which is an unsigned int. Later when sorting this number is taken "as is", which then results in an out-of-bounds situation and a segfault (usually).
--
This message was sent by Atlassian JIRA
(v6.2#6252)
More information about the asterisk-bugs
mailing list