| Summary: | ASTERISK-02008: [patches][src-audit] apps directory files app_a*.c through app_m*.c | ||
| Reporter: | Rob Gagnon (rgagnon) | Labels: | |
| Date Opened: | 2004-07-13 16:28:04 | Date Closed: | 2008-01-15 15:02:21.000-0600 |
| Priority: | Minor | Regression? | No |
| Status: | Closed/Complete | Components: | Core/General |
| Versions: | Frequency of Occurrence | ||
| Related Issues: | |||
| Environment: | Attachments: | ( 0) app_agi.c.patch.txt ( 1) app_alarmreceiver.c.patch.txt ( 2) app_cut.c.patch.txt ( 3) app_dial.c.patch.txt ( 4) app_dial.c.patch.txt ( 5) app_disa.c.patch.txt ( 6) app_enumlookup.c.patch.txt ( 7) app_festival.c.patch.txt ( 8) app_getcpeid.c.patch.txt ( 9) app_hasnewvoicemail.c.patch.txt (10) app_macro.c.patch.txt (11) app_meetme.c.patch.txt | |
| Description: | change strcat, strcpy, sprintf to strncat, strncpy, and snprintf as appropriate. ****** ADDITIONAL INFORMATION ****** [disclaimed] Also, one of the fixes in app_enumlookup.c fixes a possible buffer overrun if the "h323driver" value in the .conf file were to be more than 80 characters.... Odd, but could happen under an attack on the OS. | ||
| Comments: | By: Rob Gagnon (rgagnon) 2004-07-14 00:45:03 app_dial.c.patch.txt updated to go with v1.85 from CVS. Latest update to app_dial.c created a conflict. Correct file info: (4,945 bytes) 07-14-04 00:44 By: Mark Spencer (markster) 2004-07-14 03:36:56 Added to CVS, thanks! By: Digium Subversion (svnbot) 2008-01-15 15:02:21.000-0600 Repository: asterisk Revision: 3428 U trunk/apps/app_agi.c U trunk/apps/app_alarmreceiver.c U trunk/apps/app_cut.c U trunk/apps/app_dial.c U trunk/apps/app_disa.c U trunk/apps/app_enumlookup.c U trunk/apps/app_festival.c U trunk/apps/app_getcpeid.c U trunk/apps/app_hasnewvoicemail.c U trunk/apps/app_macro.c U trunk/apps/app_meetme.c ------------------------------------------------------------------------ r3428 | markster | 2008-01-15 15:02:20 -0600 (Tue, 15 Jan 2008) | 2 lines Merge rgagnon's pedantic string checks (apps a-m, bug ASTERISK-2008) ------------------------------------------------------------------------ http://svn.digium.com/view/asterisk?view=rev&revision=3428 | ||