kenmirrors/asterisk
1
0
Fork 0
mirror of https://github.com/asterisk/asterisk.git synced 2025-10-23 04:58:48 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
9084c85cb17fb39732e6f264999d7e0402a4f606
asterisk/main
History
Corey Farrell 68bde0f07d CDR: Protect from data overflow in ast_cdr_setuserfield. 
ast_cdr_setuserfield wrote to a fixed length field using strcpy. This could
result in a buffer overrun when called from chan_sip or func_cdr. This patch
adds a maximum bytes written to the field by using ast_copy_string instead.

ASTERISK-26897 #close
patches:
  0001-CDR-Protect-from-data-overflow-in-ast_cdr_setuserfie.patch submitted
    by Corey Farrell (license #5909)

Change-Id: Ib23ca77e9b9e2803a450e1206af45df2d2fdf65c
2017-04-04 10:12:27 +00:00
..
editline
BuildSystem: Avoid 'ar cru' and use 'ar cr' instead.
2016-06-07 02:34:44 -05:00
stdtime
BuildSystem: Fix a few issues hightlighted by gcc 6.x
2016-06-28 13:56:38 -05:00
.gitignore
build-system: Allow building with static pjproject
2016-03-01 09:33:17 -07:00
abstract_jb.c
abstract/fixed/adpative jitter buffer: disallow frame re-inserts
2017-01-17 17:08:36 -06:00
acl.c
acl.c: Improve ast_ouraddrfor() diagnostic messages.
2016-12-22 12:16:20 -06:00
adsi.c
alaw.c
aoc.c
Merge "Audit ast_json_pack() calls for needed UTF-8 checks." into 13
2016-10-14 17:17:12 -05:00
app.c
main/app.c: Memory corruption from early format destruction.
2017-01-24 14:04:08 -06:00
ast_expr2.c
ast_expr2: Fix off-nominal memory leak.
2016-07-11 13:51:17 -05:00
ast_expr2.fl
ast_expr2.h
ast_expr2.y
ast_expr2: Fix off-nominal memory leak.
2016-07-11 13:51:17 -05:00
ast_expr2f.c
asterisk.c
cli: Fix various CLI documentation and completion issues
2017-02-13 10:57:16 -05:00
asterisk.dynamics
asterisk.exports.in
pjproject_bundled: Various fixes discovered during testing of OSes
2016-05-03 06:54:29 -06:00
astfd.c
astfd: Not maximum size of a single file but maximum file descriptors.
2016-06-08 13:00:23 +02:00
astmm.c
cli: Fix various CLI documentation and completion issues
2017-02-13 10:57:16 -05:00
astobj2_container_private.h
astobj2_container.c
astobj2: Add backtrace to log_bad_ao2.
2016-10-07 18:32:16 -04:00
astobj2_hash.c
astobj2: Add backtrace to log_bad_ao2.
2016-10-07 18:32:16 -04:00
astobj2_private.h
astobj2_rbtree.c
astobj2: Add backtrace to log_bad_ao2.
2016-10-07 18:32:16 -04:00
astobj2.c
astobj2: Prevent potential deadlocks with ao2_global_obj_release
2017-03-30 13:49:49 -04:00
audiohook.c
audiohook.c: Lost RTP packets lead to out-of-sync MixMonitor.
2017-03-20 13:02:27 -06:00
autochan.c
autochan/mixmonitor/chanspy: Fix unsafe channel locking and references.
2017-03-15 17:43:54 -05:00
autoservice.c
Frame deferral: Revert API refactoring.
2017-02-01 13:33:12 -06:00
backtrace.c
bridge_after.c
bridge_basic.c
ast_framehook_attach() must be called with the channel locked.
2016-08-25 17:13:52 -05:00
bridge_channel.c
main/bridge_channel: Fix channel reference leak on video source
2016-11-04 15:49:18 -05:00
bridge_roles.c
bridge.c
cli: Fix various CLI documentation and completion issues
2017-02-13 10:57:16 -05:00
bucket.c
buildinfo.c
callerid.c
SIP diversion: Fix REDIRECTING(reason) value inconsistencies.
2016-03-01 20:13:39 -06:00
ccss.c
cli: Fix various CLI documentation and completion issues
2017-02-13 10:57:16 -05:00
cdr.c
CDR: Protect from data overflow in ast_cdr_setuserfield.
2017-04-04 10:12:27 +00:00
cel.c
Audit ast_json_pack() calls for needed UTF-8 checks.
2016-10-13 18:11:37 -05:00
channel_internal_api.c
Frame deferral: Revert API refactoring.
2017-02-01 13:33:12 -06:00
channel.c
Merge "channel: Protect flags in ast_waitfor_nandfds operation." into 13
2017-02-14 14:16:23 -06:00
chanvars.c
Fix checks for allocation debugging.
2016-08-24 11:02:47 -05:00
cli.c
cli: Fix various CLI documentation and completion issues
2017-02-13 10:57:16 -05:00
codec_builtin.c
codec_opus: Fix warning when Opus negotiated but codec_opus not loaded.
2016-11-16 13:49:23 -06:00
codec.c
codecs: Fix ABI incompatibility created by adding format_name to ast_codec
2016-06-28 13:38:28 -06:00
config_options.c
Fix Alembic upgrades.
2016-06-22 12:21:11 -05:00
config.c
Fix checks for allocation debugging.
2016-08-24 11:02:47 -05:00
core_local.c
bridge.c: Crash during attended transfer when missing a local channel half
2016-03-03 13:55:24 -06:00
core_unreal.c
Bridge system: Fix memory leaks and double frees on impart failure.
2016-04-22 16:44:04 -05:00
crypt.c
cygload.c
data.c
datastore.c
db.c
devicestate.c
devicestate: Cleanup engine thread during graceful shutdown.
2016-01-10 18:10:37 -05:00
dial.c
core/dial: New channel variable FORWARDERNAME
2016-05-31 18:07:40 -04:00
dns.c
dnsmgr.c
dsp.c
dsp.c: Add fax and DTMF detection unit tests.
2016-07-26 17:51:06 -05:00
ecdisa.h
endpoints.c
stasis_cache_pattern: Backport to 13
2016-01-05 12:29:31 -06:00
enum.c
event.c
features_config.c
Fix issue with CLI not returning to prompt after running "features show"
2016-10-19 17:55:39 -05:00
features.c
manager: Add <see-also> tags to relate Bridge related events,actions, and apps
2016-08-13 22:03:56 -05:00
file.c
file.c/__ast_file_read_dirs: Fix issues on filesystems without d_type
2016-11-15 19:20:16 -07:00
fixedjitterbuf.c
abstract/fixed/adpative jitter buffer: disallow frame re-inserts
2017-01-17 17:08:36 -06:00
fixedjitterbuf.h
abstract/fixed/adpative jitter buffer: disallow frame re-inserts
2017-01-17 17:08:36 -06:00
format_cache.c
Update support for SILK format.
2016-07-14 15:54:21 -05:00
format_cap.c
typo: s/paranthesis/parenthesis/ in a comment
2016-10-24 17:48:17 -05:00
format_compatibility.c
T.140: Fix format ref and memory leaks.
2017-01-25 13:44:26 -06:00
format.c
format: Register format-attribute module with cached formats.
2015-11-13 09:26:37 +01:00
frame.c
frame.c: Fix off-nominal format ref leaks.
2017-01-24 14:01:47 -06:00
framehook.c
fskmodem_float.c
fskmodem_int.c
fskmodem.c
global_datastores.c
hashtab.c
Fix checks for allocation debugging.
2016-08-24 11:02:47 -05:00
heap.c
Fix checks for allocation debugging.
2016-08-24 11:02:47 -05:00
http.c
thread safety: Don't use getprotobyname()
2017-03-20 08:51:47 -04:00
image.c
indications.c
io.c
sd_notify (systemd status notifications) support
2016-09-20 08:00:14 -06:00
jitterbuf.c
abstract/fixed/adpative jitter buffer: disallow frame re-inserts
2017-01-17 17:08:36 -06:00
json.c
json: Check party id name, number, subaddresses for UTF-8.
2016-10-13 18:11:36 -05:00
libasteriskpj.c
PJPROJECT logging: Fix detection of max supported log level.
2017-01-24 11:23:05 -06:00
libasteriskssl.c
libasteriskssl: do nothing with OpenSSL >= 1.1
2017-02-14 23:30:03 +02:00
libasteriskssl.exports.in
loader.c
core: Remove embedded module support
2017-03-27 10:36:23 -04:00
lock.c
chan_sip: Address runaway when realtime peers subscribe to mailboxes
2016-09-23 07:53:10 -05:00
logger.c
logger: Fix default console settings.
2016-09-20 12:01:57 -05:00
Makefile
build: Fix deb build issues with fakeroot
2017-03-30 16:09:40 -06:00
manager_bridges.c
res/ari/resource_bridges: Add the ability to manipulate the video source
2016-11-14 17:02:00 -05:00
manager_channels.c
manager: Add documentation for NewConnectedLine event.
2016-10-31 13:53:34 -05:00
manager_endpoints.c
manager_mwi.c
manager_system.c
manager.c
thread safety: Don't use getprotobyname()
2017-03-20 08:51:47 -04:00
max_forwards.c
md5.c
media_index.c
message.c
res_pjsip_messaging: Check URI type before dereferencing
2017-03-21 10:44:30 -04:00
mixmonitor.c
named_acl.c
named_locks.c
res_pjsip: Make aor named lock a mutex.
2016-08-11 11:57:51 -05:00
netsock2.c
netsock.c
netsock.c: fix includes for HURD
2016-11-01 12:37:58 -05:00
optional_api.c
parking.c
pbx_app.c
cli: Fix various CLI documentation and completion issues
2017-02-13 10:57:16 -05:00
pbx_builtins.c
asterisk.h: Add ASTERISK_REGISTER_FILE macro
2016-01-05 15:10:09 -07:00
pbx_functions.c
pbx.c: Allow dangerous functions when adding a hint to dialplan.
2016-07-28 15:10:18 -05:00
pbx_hangup_handler.c
cli: Fix various CLI documentation and completion issues
2017-02-13 10:57:16 -05:00
pbx_private.h
main/pbx: Move dialplan application management routines to pbx_app.c.
2016-01-05 12:09:38 -05:00
pbx_switch.c
main/pbx: Move switch routines to pbx_switch.c.
2016-01-05 12:07:43 -05:00
pbx_timing.c
main/pbx: Move timing routines to pbx_timing.c.
2016-01-05 12:06:23 -05:00
pbx_variables.c
main/pbx: Move variable routines to pbx_variables.c.
2016-01-04 17:26:40 -05:00
pbx.c
pbx.c: Fix crash from malformed exten pattern.
2017-03-14 18:08:02 -05:00
pickup.c
plc.c
poll.c
presencestate.c
core: Ensure presencestate subtype and message are NULL.
2016-09-21 20:03:37 +00:00
privacy.c
rtp_engine.c
core: Cleanup some channel snapshot staging anomalies.
2017-02-10 11:58:59 -06:00
say.c
Saynumber is trying to get "and" from "digits/" subfolder
2017-03-06 21:54:23 +00:00
sched.c
sched.c: Ensure oldest expiring entry runs first.
2016-03-15 12:01:50 -05:00
sdp_srtp.c
srtp: Allow zero as tag value for a sRTP Crypto Suite.
2017-03-29 15:27:01 +02:00
security_events.c
sem.c
sha1.c
sip_api.c
slinfactory.c
smoother.c
sorcery.c
sorcery.c: Minor optimizations.
2016-08-15 13:09:30 -05:00
sounds_index.c
srv.c
srv: Fix crash when ast_srv_lookup is used and 0 records are returned.
2017-02-07 18:12:17 +00:00
stasis_bridges.c
res/ari/resource_bridges: Add the ability to manipulate the video source
2016-11-14 17:02:00 -05:00
stasis_cache_pattern.c
stasis_cache_pattern: Backport to 13
2016-01-05 12:29:31 -06:00
stasis_cache.c
main/stasis_cache: Demote the ERROR message when removing a nonexistent item
2017-03-14 09:37:34 -05:00
stasis_channels.c
json: Audit ast_json_* usage for thread safety.
2015-12-16 17:17:30 -04:00
stasis_endpoints.c
stasis_endpoint.c: Fix contactstatus_to_json().
2016-07-13 14:37:10 -05:00
stasis_message_router.c
stasis: Add setting subscription congestion levels.
2016-06-07 18:57:36 -05:00
stasis_message.c
Manager: Short circuit AMI message processing.
2016-04-22 16:44:05 -05:00
stasis_system.c
res/res_corosync: Raise a Stasis message on node join/leave events
2016-07-06 07:22:46 -05:00
stasis.c
manager: Add <see-also> tags to relate UserEvent actions/apps/events
2016-08-13 20:26:50 -05:00
strcompat.c
stringfields.c
stringfields: Refactor to allow fields to be added to the end of structures
2016-04-04 18:07:18 -06:00
strings.c
ari: Implement 'debug all' and request/response logging
2017-01-24 10:48:41 -07:00
stun.c
syslog.c
taskprocessor.c
taskprocessor.c: Change when high water warning logged.
2017-01-13 21:30:53 -06:00
tcptls.c
tcptls.c: Add some missing allocation failure checks.
2017-02-17 17:13:31 -06:00
tdd.c
term.c
main: Slight refactor of main. Improve color situation.
2015-11-25 20:29:42 +01:00
test.c
threadpool.c
threadpool: Fix leak in ast_threadpool_serializer_group error path.
2016-07-13 12:30:58 -04:00
threadstorage.c
timing.c
translate.c
translate: explicit format destination not properly set
2016-07-13 18:00:40 -05:00
udptl.c
udptl: Don't eat sequence numbers until OK is received
2016-05-18 14:05:47 -05:00
ulaw.c
uri.c
utils.c
ast_careful_fwrite to support EPIPE gracefully
2017-01-26 19:04:30 -08:00
uuid.c
xml.c
xmldoc.c
xmldoc: Improve xmldoc wrapping of 'core show ...' output.
2015-11-06 14:45:19 +01:00