[asterisk-bugs] [JIRA] (ASTERISK-29219) res_pjsip_diversion: Crash if Tel URI contains History-Info
Asterisk Team (JIRA)
noreply at issues.asterisk.org
Thu Jan 14 10:35:01 CST 2021
[ https://issues.asterisk.org/jira/browse/ASTERISK-29219?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Asterisk Team updated ASTERISK-29219:
-------------------------------------
Target Release Version/s: 16.16.0
> res_pjsip_diversion: Crash if Tel URI contains History-Info
> -----------------------------------------------------------
>
> Key: ASTERISK-29219
> URL: https://issues.asterisk.org/jira/browse/ASTERISK-29219
> Project: Asterisk
> Issue Type: Security
> Security Level: None
> Components: Resources/res_pjsip_diversion
> Affects Versions: 16.7.0
> Reporter: Torrey Searle
> Severity: Blocker
> Labels: security
> Target Release: 13.38.1, 16.15.1, 16.16.0, 17.9.1, 18.1.1
>
>
> asterisk does not support tel-uri without reason or cause in History-Info
> receiving such a header will result in asterisk crashing. This patch will check if a tel URI is received and sets the reason to unknown instead of crashing
--
This message was sent by Atlassian JIRA
(v6.2#6252)
More information about the asterisk-bugs
mailing list