[asterisk-commits] r359694 - svn:log
SVN commits to the Asterisk project
asterisk-commits at lists.digium.com
Thu Mar 15 14:18:00 CDT 2012
Author: mjordan
Revision: 359694
Modified property: svn:log
Modified: svn:log at Thu Mar 15 14:18:00 2012
------------------------------------------------------------------------------
--- svn:log (original)
+++ svn:log Thu Mar 15 14:18:00 2012
@@ -3,11 +3,7 @@
Milliwatt is vulnerable to a remotely exploitable stack overrun when using
the 'o' option. This occurs due to the milliwatt_generate function not
accounting for AST_FRIENDLY_OFFSET when calculating the maximum number of
-samples it can put in the output buffer. For channels using a format with
-a sample rate less than 32kHz, the buffer overrun should not be possible as
-the buffer allocated is sufficient to hold the data, even with no bounds
-checking. For formats with a sample rate greater then 32kHz however, the
-fixed length buffer will be overrun.
+samples it can put in the output buffer.
This patch resolves this issue by taking into account AST_FRIENDLY_OFFSET
when determining the maximum number of samples allowed. Note that at no
More information about the asterisk-commits
mailing list