[test-results] [Bamboo] Asterisk Testing > Asterisk Trunk > #1132 has FAILED (3 tests failed). Change made by Matthew Jordan.
Bamboo
bamboo at asterisk.org
Wed Mar 27 12:17:14 CDT 2013
-----------------------------------------------------------------------
Asterisk Testing > Asterisk Trunk > #1132 failed.
-----------------------------------------------------------------------
Code has been updated by Matthew Jordan.
1/2 jobs failed, with 3 failing tests.
http://bamboo.asterisk.org/browse/TESTING-ASTERISKTRUNK-1132/
--------------
Failing Jobs
--------------
- Asterisk CentOS 6 32-Bit (CentOS 6): 3 of 466 tests failed.
--------------
Code Changes
--------------
Matthew Jordan (383975):
>AST-2013-001: Prevent buffer overflow through H.264 format negotiation
>
>The format attribute resource for H.264 video performs an unsafe read against a
>media attribute when parsing the SDP. The value passed in with the format
>attribute is not checked for its length when parsed into a fixed length buffer.
>This patch resolves the vulnerability by only reading as many characters from
>the SDP value as will fit into the buffer.
>
>(closes issue ASTERISK-20901)
>Reported by: Ulf Harnhammar
>patches:
> h264_overflow_security_patch.diff uploaded by jrose (License 6182)
>........
>
>Merged revisions 383973 from http://svn.asterisk.org/svn/asterisk/branches/11
>
--------------
Tests
--------------
New Test Failures (3)
- AsteriskTestSuite: S/apps/control playback/control stop
- AsteriskTestSuite: S/apps/control playback/control forward
- AsteriskTestSuite: S/bridge/disconnect
Fixed Tests (2)
- AsteriskTestSuite: S/apps/control playback/control restart
- AsteriskTestSuite: S/apps/playback/remote reverse
--
This message is automatically generated by Atlassian Bamboo
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.digium.com/pipermail/test-results/attachments/20130327/938aa660/attachment-0001.htm>
More information about the Test-results
mailing list