[Asterisk-code-review] res agi: Prevent crash when SET VARIABLE called without argu... (asterisk[master])
Sean Bright
asteriskteam at digium.com
Tue May 23 13:08:44 CDT 2017
Sean Bright has uploaded a new change for review. ( https://gerrit.asterisk.org/5702 )
Change subject: res_agi: Prevent crash when SET VARIABLE called without arguments
......................................................................
res_agi: Prevent crash when SET VARIABLE called without arguments
Explicitly check that the appropriate number of arguments were passed to
SET VARIABLE before attempting to reference them. Also initialize the
arguments array to zeroes before populating it.
ASTERISK-22432 #close
Change-Id: I5143607d80a2724f749c1674f3126b04ed32ea97
---
M res/res_agi.c
1 file changed, 5 insertions(+), 1 deletion(-)
git pull ssh://gerrit.asterisk.org:29418/asterisk refs/changes/02/5702/1
diff --git a/res/res_agi.c b/res/res_agi.c
index 557f349..6ba173f 100644
--- a/res/res_agi.c
+++ b/res/res_agi.c
@@ -3183,6 +3183,10 @@
static int handle_setvariable(struct ast_channel *chan, AGI *agi, int argc, const char * const argv[])
{
+ if (argc != 4) {
+ return RESULT_SHOWUSAGE;
+ }
+
if (argv[3])
pbx_builtin_setvar_helper(chan, argv[2], argv[3]);
@@ -4001,7 +4005,7 @@
static enum agi_result agi_handle_command(struct ast_channel *chan, AGI *agi, char *buf, int dead)
{
- const char *argv[MAX_ARGS];
+ const char *argv[MAX_ARGS] = {0};
int argc = MAX_ARGS;
int res;
agi_command *c;
--
To view, visit https://gerrit.asterisk.org/5702
To unsubscribe, visit https://gerrit.asterisk.org/settings
Gerrit-MessageType: newchange
Gerrit-Change-Id: I5143607d80a2724f749c1674f3126b04ed32ea97
Gerrit-PatchSet: 1
Gerrit-Project: asterisk
Gerrit-Branch: master
Gerrit-Owner: Sean Bright <sean.bright at gmail.com>
More information about the asterisk-code-review
mailing list